cjson
fuzzing
inputs
test1 test10 test11 test2 test3 test3.bu test3.uf test3.uu test4 test5 test6 test7 test8 test9library_config
cJSONConfig.cmake.in cJSONConfigVersion.cmake.in libcjson.pc.in libcjson_utils.pc.in uninstall.cmaketests
inputs
test1 test1.expected test10 test10.expected test11 test11.expected test2 test2.expected test3 test3.expected test4 test4.expected test5 test5.expected test6 test7 test7.expected test8 test8.expected test9 test9.expectedjson-patch-tests
.editorconfig .gitignore .npmignore README.md cjson-utils-tests.json package.json spec_tests.json tests.jsonunity
auto
colour_prompt.rb colour_reporter.rb generate_config.yml generate_module.rb generate_test_runner.rb parse_output.rb stylize_as_junit.rb test_file_filter.rb type_sanitizer.rb unity_test_summary.py unity_test_summary.rb unity_to_junit.pydocs
ThrowTheSwitchCodingStandard.md UnityAssertionsCheatSheetSuitableforPrintingandPossiblyFraming.pdf UnityAssertionsReference.md UnityConfigurationGuide.md UnityGettingStartedGuide.md UnityHelperScriptsGuide.md license.txtexamples
unity_config.hcurl
.github
scripts
cleancmd.pl cmp-config.pl cmp-pkg-config.sh codespell-ignore.words codespell.sh distfiles.sh pyspelling.words pyspelling.yaml randcurl.pl requirements-docs.txt requirements-proselint.txt requirements.txt shellcheck-ci.sh shellcheck.sh spellcheck.curl trimmarkdownheader.pl typos.sh typos.toml verify-examples.pl verify-synopsis.pl yamlcheck.sh yamlcheck.yamlworkflows
appveyor-status.yml checkdocs.yml checksrc.yml checkurls.yml codeql.yml configure-vs-cmake.yml curl-for-win.yml distcheck.yml fuzz.yml http3-linux.yml label.yml linux-old.yml linux.yml macos.yml non-native.yml windows.ymlCMake
CurlSymbolHiding.cmake CurlTests.c FindBrotli.cmake FindCares.cmake FindGSS.cmake FindGnuTLS.cmake FindLDAP.cmake FindLibbacktrace.cmake FindLibgsasl.cmake FindLibidn2.cmake FindLibpsl.cmake FindLibssh.cmake FindLibssh2.cmake FindLibuv.cmake FindMbedTLS.cmake FindNGHTTP2.cmake FindNGHTTP3.cmake FindNGTCP2.cmake FindNettle.cmake FindQuiche.cmake FindRustls.cmake FindWolfSSL.cmake FindZstd.cmake Macros.cmake OtherTests.cmake PickyWarnings.cmake Utilities.cmake cmake_uninstall.in.cmake curl-config.in.cmake unix-cache.cmake win32-cache.cmakedocs
cmdline-opts
.gitignore CMakeLists.txt MANPAGE.md Makefile.am Makefile.inc _AUTHORS.md _BUGS.md _DESCRIPTION.md _ENVIRONMENT.md _EXITCODES.md _FILES.md _GLOBBING.md _NAME.md _OPTIONS.md _OUTPUT.md _PROGRESS.md _PROTOCOLS.md _PROXYPREFIX.md _SEEALSO.md _SYNOPSIS.md _URL.md _VARIABLES.md _VERSION.md _WWW.md abstract-unix-socket.md alt-svc.md anyauth.md append.md aws-sigv4.md basic.md ca-native.md cacert.md capath.md cert-status.md cert-type.md cert.md ciphers.md compressed-ssh.md compressed.md config.md connect-timeout.md connect-to.md continue-at.md cookie-jar.md cookie.md create-dirs.md create-file-mode.md crlf.md crlfile.md curves.md data-ascii.md data-binary.md data-raw.md data-urlencode.md data.md delegation.md digest.md disable-eprt.md disable-epsv.md disable.md disallow-username-in-url.md dns-interface.md dns-ipv4-addr.md dns-ipv6-addr.md dns-servers.md doh-cert-status.md doh-insecure.md doh-url.md dump-ca-embed.md dump-header.md ech.md egd-file.md engine.md etag-compare.md etag-save.md expect100-timeout.md fail-early.md fail-with-body.md fail.md false-start.md follow.md form-escape.md form-string.md form.md ftp-account.md ftp-alternative-to-user.md ftp-create-dirs.md ftp-method.md ftp-pasv.md ftp-port.md ftp-pret.md ftp-skip-pasv-ip.md ftp-ssl-ccc-mode.md ftp-ssl-ccc.md ftp-ssl-control.md get.md globoff.md happy-eyeballs-timeout-ms.md haproxy-clientip.md haproxy-protocol.md head.md header.md help.md hostpubmd5.md hostpubsha256.md hsts.md http0.9.md http1.0.md http1.1.md http2-prior-knowledge.md http2.md http3-only.md http3.md ignore-content-length.md insecure.md interface.md ip-tos.md ipfs-gateway.md ipv4.md ipv6.md json.md junk-session-cookies.md keepalive-cnt.md keepalive-time.md key-type.md key.md knownhosts.md krb.md libcurl.md limit-rate.md list-only.md local-port.md location-trusted.md location.md login-options.md mail-auth.md mail-from.md mail-rcpt-allowfails.md mail-rcpt.md mainpage.idx manual.md max-filesize.md max-redirs.md max-time.md metalink.md mptcp.md negotiate.md netrc-file.md netrc-optional.md netrc.md next.md no-alpn.md no-buffer.md no-clobber.md no-keepalive.md no-npn.md no-progress-meter.md no-sessionid.md noproxy.md ntlm-wb.md ntlm.md oauth2-bearer.md out-null.md output-dir.md output.md parallel-immediate.md parallel-max-host.md parallel-max.md parallel.md pass.md path-as-is.md pinnedpubkey.md post301.md post302.md post303.md preproxy.md progress-bar.md proto-default.md proto-redir.md proto.md proxy-anyauth.md proxy-basic.md proxy-ca-native.md proxy-cacert.md proxy-capath.md proxy-cert-type.md proxy-cert.md proxy-ciphers.md proxy-crlfile.md proxy-digest.md proxy-header.md proxy-http2.md proxy-insecure.md proxy-key-type.md proxy-key.md proxy-negotiate.md proxy-ntlm.md proxy-pass.md proxy-pinnedpubkey.md proxy-service-name.md proxy-ssl-allow-beast.md proxy-ssl-auto-client-cert.md proxy-tls13-ciphers.md proxy-tlsauthtype.md proxy-tlspassword.md proxy-tlsuser.md proxy-tlsv1.md proxy-user.md proxy.md proxy1.0.md proxytunnel.md pubkey.md quote.md random-file.md range.md rate.md raw.md referer.md remote-header-name.md remote-name-all.md remote-name.md remote-time.md remove-on-error.md request-target.md request.md resolve.md retry-all-errors.md retry-connrefused.md retry-delay.md retry-max-time.md retry.md sasl-authzid.md sasl-ir.md service-name.md show-error.md show-headers.md sigalgs.md silent.md skip-existing.md socks4.md socks4a.md socks5-basic.md socks5-gssapi-nec.md socks5-gssapi-service.md socks5-gssapi.md socks5-hostname.md socks5.md speed-limit.md speed-time.md ssl-allow-beast.md ssl-auto-client-cert.md ssl-no-revoke.md ssl-reqd.md ssl-revoke-best-effort.md ssl-sessions.md ssl.md sslv2.md sslv3.md stderr.md styled-output.md suppress-connect-headers.md tcp-fastopen.md tcp-nodelay.md telnet-option.md tftp-blksize.md tftp-no-options.md time-cond.md tls-earlydata.md tls-max.md tls13-ciphers.md tlsauthtype.md tlspassword.md tlsuser.md tlsv1.0.md tlsv1.1.md tlsv1.2.md tlsv1.3.md tlsv1.md tr-encoding.md trace-ascii.md trace-config.md trace-ids.md trace-time.md trace.md unix-socket.md upload-file.md upload-flags.md url-query.md url.md use-ascii.md user-agent.md user.md variable.md verbose.md version.md vlan-priority.md write-out.md xattr.mdexamples
.checksrc .gitignore 10-at-a-time.c CMakeLists.txt Makefile.am Makefile.example Makefile.inc README.md adddocsref.pl address-scope.c altsvc.c anyauthput.c block_ip.c cacertinmem.c certinfo.c chkspeed.c connect-to.c cookie_interface.c crawler.c debug.c default-scheme.c ephiperfifo.c evhiperfifo.c externalsocket.c fileupload.c ftp-delete.c ftp-wildcard.c ftpget.c ftpgetinfo.c ftpgetresp.c ftpsget.c ftpupload.c ftpuploadfrommem.c ftpuploadresume.c getinfo.c getinmemory.c getredirect.c getreferrer.c ghiper.c headerapi.c hiperfifo.c hsts-preload.c htmltidy.c htmltitle.cpp http-options.c http-post.c http2-download.c http2-pushinmemory.c http2-serverpush.c http2-upload.c http3-present.c http3.c httpcustomheader.c httpput-postfields.c httpput.c https.c imap-append.c imap-authzid.c imap-copy.c imap-create.c imap-delete.c imap-examine.c imap-fetch.c imap-list.c imap-lsub.c imap-multi.c imap-noop.c imap-search.c imap-ssl.c imap-store.c imap-tls.c interface.c ipv6.c keepalive.c localport.c log_failed_transfers.c maxconnects.c multi-app.c multi-debugcallback.c multi-double.c multi-event.c multi-formadd.c multi-legacy.c multi-post.c multi-single.c multi-uv.c netrc.c parseurl.c persistent.c pop3-authzid.c pop3-dele.c pop3-list.c pop3-multi.c pop3-noop.c pop3-retr.c pop3-ssl.c pop3-stat.c pop3-tls.c pop3-top.c pop3-uidl.c post-callback.c postinmemory.c postit2-formadd.c postit2.c progressfunc.c protofeats.c range.c resolve.c rtsp-options.c sendrecv.c sepheaders.c sessioninfo.c sftpget.c sftpuploadresume.c shared-connection-cache.c simple.c simplepost.c simplessl.c smooth-gtk-thread.c smtp-authzid.c smtp-expn.c smtp-mail.c smtp-mime.c smtp-multi.c smtp-ssl.c smtp-tls.c smtp-vrfy.c sslbackend.c synctime.c threaded.c unixsocket.c url2file.c urlapi.c usercertinmem.c version-check.pl websocket-cb.c websocket-updown.c websocket.c xmlstream.cinternals
BUFQ.md BUFREF.md CHECKSRC.md CLIENT-READERS.md CLIENT-WRITERS.md CODE_STYLE.md CONNECTION-FILTERS.md CREDENTIALS.md CURLX.md DYNBUF.md HASH.md LLIST.md MID.md MQTT.md MULTI-EV.md NEW-PROTOCOL.md PEERS.md PORTING.md RATELIMITS.md README.md SCORECARD.md SPLAY.md STRPARSE.md THRDPOOL-AND-QUEUE.md TIME-KEEPING.md TLS-SESSIONS.md UINT_SETS.md WEBSOCKET.mdlibcurl
opts
CMakeLists.txt CURLINFO_ACTIVESOCKET.md CURLINFO_APPCONNECT_TIME.md CURLINFO_APPCONNECT_TIME_T.md CURLINFO_CAINFO.md CURLINFO_CAPATH.md CURLINFO_CERTINFO.md CURLINFO_CONDITION_UNMET.md CURLINFO_CONNECT_TIME.md CURLINFO_CONNECT_TIME_T.md CURLINFO_CONN_ID.md CURLINFO_CONTENT_LENGTH_DOWNLOAD.md CURLINFO_CONTENT_LENGTH_DOWNLOAD_T.md CURLINFO_CONTENT_LENGTH_UPLOAD.md CURLINFO_CONTENT_LENGTH_UPLOAD_T.md CURLINFO_CONTENT_TYPE.md CURLINFO_COOKIELIST.md CURLINFO_EARLYDATA_SENT_T.md CURLINFO_EFFECTIVE_METHOD.md CURLINFO_EFFECTIVE_URL.md CURLINFO_FILETIME.md CURLINFO_FILETIME_T.md CURLINFO_FTP_ENTRY_PATH.md CURLINFO_HEADER_SIZE.md CURLINFO_HTTPAUTH_AVAIL.md CURLINFO_HTTPAUTH_USED.md CURLINFO_HTTP_CONNECTCODE.md CURLINFO_HTTP_VERSION.md CURLINFO_LASTSOCKET.md CURLINFO_LOCAL_IP.md CURLINFO_LOCAL_PORT.md CURLINFO_NAMELOOKUP_TIME.md CURLINFO_NAMELOOKUP_TIME_T.md CURLINFO_NUM_CONNECTS.md CURLINFO_OS_ERRNO.md CURLINFO_POSTTRANSFER_TIME_T.md CURLINFO_PRETRANSFER_TIME.md CURLINFO_PRETRANSFER_TIME_T.md CURLINFO_PRIMARY_IP.md CURLINFO_PRIMARY_PORT.md CURLINFO_PRIVATE.md CURLINFO_PROTOCOL.md CURLINFO_PROXYAUTH_AVAIL.md CURLINFO_PROXYAUTH_USED.md CURLINFO_PROXY_ERROR.md CURLINFO_PROXY_SSL_VERIFYRESULT.md CURLINFO_QUEUE_TIME_T.md CURLINFO_REDIRECT_COUNT.md CURLINFO_REDIRECT_TIME.md CURLINFO_REDIRECT_TIME_T.md CURLINFO_REDIRECT_URL.md CURLINFO_REFERER.md CURLINFO_REQUEST_SIZE.md CURLINFO_RESPONSE_CODE.md CURLINFO_RETRY_AFTER.md CURLINFO_RTSP_CLIENT_CSEQ.md CURLINFO_RTSP_CSEQ_RECV.md CURLINFO_RTSP_SERVER_CSEQ.md CURLINFO_RTSP_SESSION_ID.md CURLINFO_SCHEME.md CURLINFO_SIZE_DELIVERED.md CURLINFO_SIZE_DOWNLOAD.md CURLINFO_SIZE_DOWNLOAD_T.md CURLINFO_SIZE_UPLOAD.md CURLINFO_SIZE_UPLOAD_T.md CURLINFO_SPEED_DOWNLOAD.md CURLINFO_SPEED_DOWNLOAD_T.md CURLINFO_SPEED_UPLOAD.md CURLINFO_SPEED_UPLOAD_T.md CURLINFO_SSL_ENGINES.md CURLINFO_SSL_VERIFYRESULT.md CURLINFO_STARTTRANSFER_TIME.md CURLINFO_STARTTRANSFER_TIME_T.md CURLINFO_TLS_SESSION.md CURLINFO_TLS_SSL_PTR.md CURLINFO_TOTAL_TIME.md CURLINFO_TOTAL_TIME_T.md CURLINFO_USED_PROXY.md CURLINFO_XFER_ID.md CURLMINFO_XFERS_ADDED.md CURLMINFO_XFERS_CURRENT.md CURLMINFO_XFERS_DONE.md CURLMINFO_XFERS_PENDING.md CURLMINFO_XFERS_RUNNING.md CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE.md CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE.md CURLMOPT_MAXCONNECTS.md CURLMOPT_MAX_CONCURRENT_STREAMS.md CURLMOPT_MAX_HOST_CONNECTIONS.md CURLMOPT_MAX_PIPELINE_LENGTH.md CURLMOPT_MAX_TOTAL_CONNECTIONS.md CURLMOPT_NETWORK_CHANGED.md CURLMOPT_NOTIFYDATA.md CURLMOPT_NOTIFYFUNCTION.md CURLMOPT_PIPELINING.md CURLMOPT_PIPELINING_SERVER_BL.md CURLMOPT_PIPELINING_SITE_BL.md CURLMOPT_PUSHDATA.md CURLMOPT_PUSHFUNCTION.md CURLMOPT_QUICK_EXIT.md CURLMOPT_RESOLVE_THREADS_MAX.md CURLMOPT_SOCKETDATA.md CURLMOPT_SOCKETFUNCTION.md CURLMOPT_TIMERDATA.md CURLMOPT_TIMERFUNCTION.md CURLOPT_ABSTRACT_UNIX_SOCKET.md CURLOPT_ACCEPTTIMEOUT_MS.md CURLOPT_ACCEPT_ENCODING.md CURLOPT_ADDRESS_SCOPE.md CURLOPT_ALTSVC.md CURLOPT_ALTSVC_CTRL.md CURLOPT_APPEND.md CURLOPT_AUTOREFERER.md CURLOPT_AWS_SIGV4.md CURLOPT_BUFFERSIZE.md CURLOPT_CAINFO.md CURLOPT_CAINFO_BLOB.md CURLOPT_CAPATH.md CURLOPT_CA_CACHE_TIMEOUT.md CURLOPT_CERTINFO.md CURLOPT_CHUNK_BGN_FUNCTION.md CURLOPT_CHUNK_DATA.md CURLOPT_CHUNK_END_FUNCTION.md CURLOPT_CLOSESOCKETDATA.md CURLOPT_CLOSESOCKETFUNCTION.md CURLOPT_CONNECTTIMEOUT.md CURLOPT_CONNECTTIMEOUT_MS.md CURLOPT_CONNECT_ONLY.md CURLOPT_CONNECT_TO.md CURLOPT_CONV_FROM_NETWORK_FUNCTION.md CURLOPT_CONV_FROM_UTF8_FUNCTION.md CURLOPT_CONV_TO_NETWORK_FUNCTION.md CURLOPT_COOKIE.md CURLOPT_COOKIEFILE.md CURLOPT_COOKIEJAR.md CURLOPT_COOKIELIST.md CURLOPT_COOKIESESSION.md CURLOPT_COPYPOSTFIELDS.md CURLOPT_CRLF.md CURLOPT_CRLFILE.md CURLOPT_CURLU.md CURLOPT_CUSTOMREQUEST.md CURLOPT_DEBUGDATA.md CURLOPT_DEBUGFUNCTION.md CURLOPT_DEFAULT_PROTOCOL.md CURLOPT_DIRLISTONLY.md CURLOPT_DISALLOW_USERNAME_IN_URL.md CURLOPT_DNS_CACHE_TIMEOUT.md CURLOPT_DNS_INTERFACE.md CURLOPT_DNS_LOCAL_IP4.md CURLOPT_DNS_LOCAL_IP6.md CURLOPT_DNS_SERVERS.md CURLOPT_DNS_SHUFFLE_ADDRESSES.md CURLOPT_DNS_USE_GLOBAL_CACHE.md CURLOPT_DOH_SSL_VERIFYHOST.md CURLOPT_DOH_SSL_VERIFYPEER.md CURLOPT_DOH_SSL_VERIFYSTATUS.md CURLOPT_DOH_URL.md CURLOPT_ECH.md CURLOPT_EGDSOCKET.md CURLOPT_ERRORBUFFER.md CURLOPT_EXPECT_100_TIMEOUT_MS.md CURLOPT_FAILONERROR.md CURLOPT_FILETIME.md CURLOPT_FNMATCH_DATA.md CURLOPT_FNMATCH_FUNCTION.md CURLOPT_FOLLOWLOCATION.md CURLOPT_FORBID_REUSE.md CURLOPT_FRESH_CONNECT.md CURLOPT_FTPPORT.md CURLOPT_FTPSSLAUTH.md CURLOPT_FTP_ACCOUNT.md CURLOPT_FTP_ALTERNATIVE_TO_USER.md CURLOPT_FTP_CREATE_MISSING_DIRS.md CURLOPT_FTP_FILEMETHOD.md CURLOPT_FTP_SKIP_PASV_IP.md CURLOPT_FTP_SSL_CCC.md CURLOPT_FTP_USE_EPRT.md CURLOPT_FTP_USE_EPSV.md CURLOPT_FTP_USE_PRET.md CURLOPT_GSSAPI_DELEGATION.md CURLOPT_HAPPY_EYEBALLS_TIMEOUT_MS.md CURLOPT_HAPROXYPROTOCOL.md CURLOPT_HAPROXY_CLIENT_IP.md CURLOPT_HEADER.md CURLOPT_HEADERDATA.md CURLOPT_HEADERFUNCTION.md CURLOPT_HEADEROPT.md CURLOPT_HSTS.md CURLOPT_HSTSREADDATA.md CURLOPT_HSTSREADFUNCTION.md CURLOPT_HSTSWRITEDATA.md CURLOPT_HSTSWRITEFUNCTION.md CURLOPT_HSTS_CTRL.md CURLOPT_HTTP09_ALLOWED.md CURLOPT_HTTP200ALIASES.md CURLOPT_HTTPAUTH.md CURLOPT_HTTPGET.md CURLOPT_HTTPHEADER.md CURLOPT_HTTPPOST.md CURLOPT_HTTPPROXYTUNNEL.md CURLOPT_HTTP_CONTENT_DECODING.md CURLOPT_HTTP_TRANSFER_DECODING.md CURLOPT_HTTP_VERSION.md CURLOPT_IGNORE_CONTENT_LENGTH.md CURLOPT_INFILESIZE.md CURLOPT_INFILESIZE_LARGE.md CURLOPT_INTERFACE.md CURLOPT_INTERLEAVEDATA.md CURLOPT_INTERLEAVEFUNCTION.md CURLOPT_IOCTLDATA.md CURLOPT_IOCTLFUNCTION.md CURLOPT_IPRESOLVE.md CURLOPT_ISSUERCERT.md CURLOPT_ISSUERCERT_BLOB.md CURLOPT_KEEP_SENDING_ON_ERROR.md CURLOPT_KEYPASSWD.md CURLOPT_KRBLEVEL.md CURLOPT_LOCALPORT.md CURLOPT_LOCALPORTRANGE.md CURLOPT_LOGIN_OPTIONS.md CURLOPT_LOW_SPEED_LIMIT.md CURLOPT_LOW_SPEED_TIME.md CURLOPT_MAIL_AUTH.md CURLOPT_MAIL_FROM.md CURLOPT_MAIL_RCPT.md CURLOPT_MAIL_RCPT_ALLOWFAILS.md CURLOPT_MAXAGE_CONN.md CURLOPT_MAXCONNECTS.md CURLOPT_MAXFILESIZE.md CURLOPT_MAXFILESIZE_LARGE.md CURLOPT_MAXLIFETIME_CONN.md CURLOPT_MAXREDIRS.md CURLOPT_MAX_RECV_SPEED_LARGE.md CURLOPT_MAX_SEND_SPEED_LARGE.md CURLOPT_MIMEPOST.md CURLOPT_MIME_OPTIONS.md CURLOPT_NETRC.md CURLOPT_NETRC_FILE.md CURLOPT_NEW_DIRECTORY_PERMS.md CURLOPT_NEW_FILE_PERMS.md CURLOPT_NOBODY.md CURLOPT_NOPROGRESS.md CURLOPT_NOPROXY.md CURLOPT_NOSIGNAL.md CURLOPT_OPENSOCKETDATA.md CURLOPT_OPENSOCKETFUNCTION.md CURLOPT_PASSWORD.md CURLOPT_PATH_AS_IS.md CURLOPT_PINNEDPUBLICKEY.md CURLOPT_PIPEWAIT.md CURLOPT_PORT.md CURLOPT_POST.md CURLOPT_POSTFIELDS.md CURLOPT_POSTFIELDSIZE.md CURLOPT_POSTFIELDSIZE_LARGE.md CURLOPT_POSTQUOTE.md CURLOPT_POSTREDIR.md CURLOPT_PREQUOTE.md CURLOPT_PREREQDATA.md CURLOPT_PREREQFUNCTION.md CURLOPT_PRE_PROXY.md CURLOPT_PRIVATE.md CURLOPT_PROGRESSDATA.md CURLOPT_PROGRESSFUNCTION.md CURLOPT_PROTOCOLS.md CURLOPT_PROTOCOLS_STR.md CURLOPT_PROXY.md CURLOPT_PROXYAUTH.md CURLOPT_PROXYHEADER.md CURLOPT_PROXYPASSWORD.md CURLOPT_PROXYPORT.md CURLOPT_PROXYTYPE.md CURLOPT_PROXYUSERNAME.md CURLOPT_PROXYUSERPWD.md CURLOPT_PROXY_CAINFO.md CURLOPT_PROXY_CAINFO_BLOB.md CURLOPT_PROXY_CAPATH.md CURLOPT_PROXY_CRLFILE.md CURLOPT_PROXY_ISSUERCERT.md CURLOPT_PROXY_ISSUERCERT_BLOB.md CURLOPT_PROXY_KEYPASSWD.md CURLOPT_PROXY_PINNEDPUBLICKEY.md CURLOPT_PROXY_SERVICE_NAME.md CURLOPT_PROXY_SSLCERT.md CURLOPT_PROXY_SSLCERTTYPE.md CURLOPT_PROXY_SSLCERT_BLOB.md CURLOPT_PROXY_SSLKEY.md CURLOPT_PROXY_SSLKEYTYPE.md CURLOPT_PROXY_SSLKEY_BLOB.md CURLOPT_PROXY_SSLVERSION.md CURLOPT_PROXY_SSL_CIPHER_LIST.md CURLOPT_PROXY_SSL_OPTIONS.md CURLOPT_PROXY_SSL_VERIFYHOST.md CURLOPT_PROXY_SSL_VERIFYPEER.md CURLOPT_PROXY_TLS13_CIPHERS.md CURLOPT_PROXY_TLSAUTH_PASSWORD.md CURLOPT_PROXY_TLSAUTH_TYPE.md CURLOPT_PROXY_TLSAUTH_USERNAME.md CURLOPT_PROXY_TRANSFER_MODE.md CURLOPT_PUT.md CURLOPT_QUICK_EXIT.md CURLOPT_QUOTE.md CURLOPT_RANDOM_FILE.md CURLOPT_RANGE.md CURLOPT_READDATA.md CURLOPT_READFUNCTION.md CURLOPT_REDIR_PROTOCOLS.md CURLOPT_REDIR_PROTOCOLS_STR.md CURLOPT_REFERER.md CURLOPT_REQUEST_TARGET.md CURLOPT_RESOLVE.md CURLOPT_RESOLVER_START_DATA.md CURLOPT_RESOLVER_START_FUNCTION.md CURLOPT_RESUME_FROM.md CURLOPT_RESUME_FROM_LARGE.md CURLOPT_RTSP_CLIENT_CSEQ.md CURLOPT_RTSP_REQUEST.md CURLOPT_RTSP_SERVER_CSEQ.md CURLOPT_RTSP_SESSION_ID.md CURLOPT_RTSP_STREAM_URI.md CURLOPT_RTSP_TRANSPORT.md CURLOPT_SASL_AUTHZID.md CURLOPT_SASL_IR.md CURLOPT_SEEKDATA.md CURLOPT_SEEKFUNCTION.md CURLOPT_SERVER_RESPONSE_TIMEOUT.md CURLOPT_SERVER_RESPONSE_TIMEOUT_MS.md CURLOPT_SERVICE_NAME.md CURLOPT_SHARE.md CURLOPT_SOCKOPTDATA.md CURLOPT_SOCKOPTFUNCTION.md CURLOPT_SOCKS5_AUTH.md CURLOPT_SOCKS5_GSSAPI_NEC.md CURLOPT_SOCKS5_GSSAPI_SERVICE.md CURLOPT_SSH_AUTH_TYPES.md CURLOPT_SSH_COMPRESSION.md CURLOPT_SSH_HOSTKEYDATA.md CURLOPT_SSH_HOSTKEYFUNCTION.md CURLOPT_SSH_HOST_PUBLIC_KEY_MD5.md CURLOPT_SSH_HOST_PUBLIC_KEY_SHA256.md CURLOPT_SSH_KEYDATA.md CURLOPT_SSH_KEYFUNCTION.md CURLOPT_SSH_KNOWNHOSTS.md CURLOPT_SSH_PRIVATE_KEYFILE.md CURLOPT_SSH_PUBLIC_KEYFILE.md CURLOPT_SSLCERT.md CURLOPT_SSLCERTTYPE.md CURLOPT_SSLCERT_BLOB.md CURLOPT_SSLENGINE.md CURLOPT_SSLENGINE_DEFAULT.md CURLOPT_SSLKEY.md CURLOPT_SSLKEYTYPE.md CURLOPT_SSLKEY_BLOB.md CURLOPT_SSLVERSION.md CURLOPT_SSL_CIPHER_LIST.md CURLOPT_SSL_CTX_DATA.md CURLOPT_SSL_CTX_FUNCTION.md CURLOPT_SSL_EC_CURVES.md CURLOPT_SSL_ENABLE_ALPN.md CURLOPT_SSL_ENABLE_NPN.md CURLOPT_SSL_FALSESTART.md CURLOPT_SSL_OPTIONS.md CURLOPT_SSL_SESSIONID_CACHE.md CURLOPT_SSL_SIGNATURE_ALGORITHMS.md CURLOPT_SSL_VERIFYHOST.md CURLOPT_SSL_VERIFYPEER.md CURLOPT_SSL_VERIFYSTATUS.md CURLOPT_STDERR.md CURLOPT_STREAM_DEPENDS.md CURLOPT_STREAM_DEPENDS_E.md CURLOPT_STREAM_WEIGHT.md CURLOPT_SUPPRESS_CONNECT_HEADERS.md CURLOPT_TCP_FASTOPEN.md CURLOPT_TCP_KEEPALIVE.md CURLOPT_TCP_KEEPCNT.md CURLOPT_TCP_KEEPIDLE.md CURLOPT_TCP_KEEPINTVL.md CURLOPT_TCP_NODELAY.md CURLOPT_TELNETOPTIONS.md CURLOPT_TFTP_BLKSIZE.md CURLOPT_TFTP_NO_OPTIONS.md CURLOPT_TIMECONDITION.md CURLOPT_TIMEOUT.md CURLOPT_TIMEOUT_MS.md CURLOPT_TIMEVALUE.md CURLOPT_TIMEVALUE_LARGE.md CURLOPT_TLS13_CIPHERS.md CURLOPT_TLSAUTH_PASSWORD.md CURLOPT_TLSAUTH_TYPE.md CURLOPT_TLSAUTH_USERNAME.md CURLOPT_TRAILERDATA.md CURLOPT_TRAILERFUNCTION.md CURLOPT_TRANSFERTEXT.md CURLOPT_TRANSFER_ENCODING.md CURLOPT_UNIX_SOCKET_PATH.md CURLOPT_UNRESTRICTED_AUTH.md CURLOPT_UPKEEP_INTERVAL_MS.md CURLOPT_UPLOAD.md CURLOPT_UPLOAD_BUFFERSIZE.md CURLOPT_UPLOAD_FLAGS.md CURLOPT_URL.md CURLOPT_USERAGENT.md CURLOPT_USERNAME.md CURLOPT_USERPWD.md CURLOPT_USE_SSL.md CURLOPT_VERBOSE.md CURLOPT_WILDCARDMATCH.md CURLOPT_WRITEDATA.md CURLOPT_WRITEFUNCTION.md CURLOPT_WS_OPTIONS.md CURLOPT_XFERINFODATA.md CURLOPT_XFERINFOFUNCTION.md CURLOPT_XOAUTH2_BEARER.md CURLSHOPT_LOCKFUNC.md CURLSHOPT_SHARE.md CURLSHOPT_UNLOCKFUNC.md CURLSHOPT_UNSHARE.md CURLSHOPT_USERDATA.md Makefile.am Makefile.incinclude
curl
Makefile.am curl.h curlver.h easy.h header.h mprintf.h multi.h options.h stdcheaders.h system.h typecheck-gcc.h urlapi.h websockets.hlib
curlx
base64.c base64.h basename.c basename.h dynbuf.c dynbuf.h fopen.c fopen.h inet_ntop.c inet_ntop.h inet_pton.c inet_pton.h multibyte.c multibyte.h nonblock.c nonblock.h snprintf.c snprintf.h strcopy.c strcopy.h strdup.c strdup.h strerr.c strerr.h strparse.c strparse.h timediff.c timediff.h timeval.c timeval.h version_win32.c version_win32.h wait.c wait.h warnless.c warnless.h winapi.c winapi.hvauth
cleartext.c cram.c digest.c digest.h digest_sspi.c gsasl.c krb5_gssapi.c krb5_sspi.c ntlm.c ntlm_sspi.c oauth2.c spnego_gssapi.c spnego_sspi.c vauth.c vauth.hvquic
curl_ngtcp2.c curl_ngtcp2.h curl_quiche.c curl_quiche.h vquic-tls.c vquic-tls.h vquic.c vquic.h vquic_int.hvtls
apple.c apple.h cipher_suite.c cipher_suite.h gtls.c gtls.h hostcheck.c hostcheck.h keylog.c keylog.h mbedtls.c mbedtls.h openssl.c openssl.h rustls.c rustls.h schannel.c schannel.h schannel_int.h schannel_verify.c vtls.c vtls.h vtls_int.h vtls_scache.c vtls_scache.h vtls_spack.c vtls_spack.h wolfssl.c wolfssl.h x509asn1.c x509asn1.hm4
.gitignore curl-amissl.m4 curl-apple-sectrust.m4 curl-compilers.m4 curl-confopts.m4 curl-functions.m4 curl-gnutls.m4 curl-mbedtls.m4 curl-openssl.m4 curl-override.m4 curl-reentrant.m4 curl-rustls.m4 curl-schannel.m4 curl-sysconfig.m4 curl-wolfssl.m4 xc-am-iface.m4 xc-cc-check.m4 xc-lt-iface.m4 xc-val-flgs.m4 zz40-xc-ovr.m4 zz50-xc-ovr.m4projects
OS400
.checksrc README.OS400 ccsidcurl.c ccsidcurl.h config400.default curl.cmd curl.inc.in curlcl.c curlmain.c initscript.sh make-docs.sh make-include.sh make-lib.sh make-src.sh make-tests.sh makefile.sh os400sys.c os400sys.hWindows
tmpl
.gitattributes README.txt curl-all.sln curl.sln curl.vcxproj curl.vcxproj.filters libcurl.sln libcurl.vcxproj libcurl.vcxproj.filtersvms
Makefile.am backup_gnv_curl_src.com build_curl-config_script.com build_gnv_curl.com build_gnv_curl_pcsi_desc.com build_gnv_curl_pcsi_text.com build_gnv_curl_release_notes.com build_libcurl_pc.com build_vms.com clean_gnv_curl.com compare_curl_source.com config_h.com curl_crtl_init.c curl_gnv_build_steps.txt curl_release_note_start.txt curl_startup.com curlmsg.h curlmsg.msg curlmsg.sdl curlmsg_vms.h generate_config_vms_h_curl.com generate_vax_transfer.com gnv_conftest.c_first gnv_curl_configure.sh gnv_libcurl_symbols.opt gnv_link_curl.com macro32_exactcase.patch make_gnv_curl_install.sh make_pcsi_curl_kit_name.com pcsi_gnv_curl_file_list.txt pcsi_product_gnv_curl.com readme report_openssl_version.c setup_gnv_curl_build.com stage_curl_install.com vms_eco_level.hscripts
.checksrc CMakeLists.txt Makefile.am badwords badwords-all badwords.txt cd2cd cd2nroff cdall checksrc-all.pl checksrc.pl cmakelint.sh completion.pl contributors.sh contrithanks.sh coverage.sh delta dmaketgz extract-unit-protos firefox-db2pem.sh installcheck.sh maketgz managen mdlinkcheck mk-ca-bundle.pl mk-unity.pl nroff2cd perlcheck.sh pythonlint.sh randdisable release-notes.pl release-tools.sh schemetable.c singleuse.pl spacecheck.pl top-complexity top-length verify-release wcurlsrc
.checksrc .gitignore CMakeLists.txt Makefile.am Makefile.inc config2setopts.c config2setopts.h curl.rc curlinfo.c mk-file-embed.pl mkhelp.pl slist_wc.c slist_wc.h terminal.c terminal.h tool_cb_dbg.c tool_cb_dbg.h tool_cb_hdr.c tool_cb_hdr.h tool_cb_prg.c tool_cb_prg.h tool_cb_rea.c tool_cb_rea.h tool_cb_see.c tool_cb_see.h tool_cb_soc.c tool_cb_soc.h tool_cb_wrt.c tool_cb_wrt.h tool_cfgable.c tool_cfgable.h tool_dirhie.c tool_dirhie.h tool_doswin.c tool_doswin.h tool_easysrc.c tool_easysrc.h tool_filetime.c tool_filetime.h tool_findfile.c tool_findfile.h tool_formparse.c tool_formparse.h tool_getparam.c tool_getparam.h tool_getpass.c tool_getpass.h tool_help.c tool_help.h tool_helpers.c tool_helpers.h tool_hugehelp.h tool_ipfs.c tool_ipfs.h tool_libinfo.c tool_libinfo.h tool_listhelp.c tool_main.c tool_main.h tool_msgs.c tool_msgs.h tool_operate.c tool_operate.h tool_operhlp.c tool_operhlp.h tool_paramhlp.c tool_paramhlp.h tool_parsecfg.c tool_parsecfg.h tool_progress.c tool_progress.h tool_sdecls.h tool_setopt.c tool_setopt.h tool_setup.h tool_ssls.c tool_ssls.h tool_stderr.c tool_stderr.h tool_urlglob.c tool_urlglob.h tool_util.c tool_util.h tool_version.h tool_vms.c tool_vms.h tool_writeout.c tool_writeout.h tool_writeout_json.c tool_writeout_json.h tool_xattr.c tool_xattr.h var.c var.htests
certs
.gitignore CMakeLists.txt Makefile.am Makefile.inc genserv.pl srp-verifier-conf srp-verifier-db test-ca.cnf test-ca.prm test-client-cert.prm test-client-eku-only.prm test-localhost-san-first.prm test-localhost-san-last.prm test-localhost.nn.prm test-localhost.prm test-localhost0h.prmdata
.gitignore DISABLED Makefile.am data-xml1 data1400.c data1401.c data1402.c data1403.c data1404.c data1405.c data1406.c data1407.c data1420.c data1461.txt data1463.txt data1465.c data1481.c data1705-1.md data1705-2.md data1705-3.md data1705-4.md data1705-stdout.1 data1706-1.md data1706-2.md data1706-3.md data1706-4.md data1706-stdout.txt data320.html test1 test10 test100 test1000 test1001 test1002 test1003 test1004 test1005 test1006 test1007 test1008 test1009 test101 test1010 test1011 test1012 test1013 test1014 test1015 test1016 test1017 test1018 test1019 test102 test1020 test1021 test1022 test1023 test1024 test1025 test1026 test1027 test1028 test1029 test103 test1030 test1031 test1032 test1033 test1034 test1035 test1036 test1037 test1038 test1039 test104 test1040 test1041 test1042 test1043 test1044 test1045 test1046 test1047 test1048 test1049 test105 test1050 test1051 test1052 test1053 test1054 test1055 test1056 test1057 test1058 test1059 test106 test1060 test1061 test1062 test1063 test1064 test1065 test1066 test1067 test1068 test1069 test107 test1070 test1071 test1072 test1073 test1074 test1075 test1076 test1077 test1078 test1079 test108 test1080 test1081 test1082 test1083 test1084 test1085 test1086 test1087 test1088 test1089 test109 test1090 test1091 test1092 test1093 test1094 test1095 test1096 test1097 test1098 test1099 test11 test110 test1100 test1101 test1102 test1103 test1104 test1105 test1106 test1107 test1108 test1109 test111 test1110 test1111 test1112 test1113 test1114 test1115 test1116 test1117 test1118 test1119 test112 test1120 test1121 test1122 test1123 test1124 test1125 test1126 test1127 test1128 test1129 test113 test1130 test1131 test1132 test1133 test1134 test1135 test1136 test1137 test1138 test1139 test114 test1140 test1141 test1142 test1143 test1144 test1145 test1146 test1147 test1148 test1149 test115 test1150 test1151 test1152 test1153 test1154 test1155 test1156 test1157 test1158 test1159 test116 test1160 test1161 test1162 test1163 test1164 test1165 test1166 test1167 test1168 test1169 test117 test1170 test1171 test1172 test1173 test1174 test1175 test1176 test1177 test1178 test1179 test118 test1180 test1181 test1182 test1183 test1184 test1185 test1186 test1187 test1188 test1189 test119 test1190 test1191 test1192 test1193 test1194 test1195 test1196 test1197 test1198 test1199 test12 test120 test1200 test1201 test1202 test1203 test1204 test1205 test1206 test1207 test1208 test1209 test121 test1210 test1211 test1212 test1213 test1214 test1215 test1216 test1217 test1218 test1219 test122 test1220 test1221 test1222 test1223 test1224 test1225 test1226 test1227 test1228 test1229 test123 test1230 test1231 test1232 test1233 test1234 test1235 test1236 test1237 test1238 test1239 test124 test1240 test1241 test1242 test1243 test1244 test1245 test1246 test1247 test1248 test1249 test125 test1250 test1251 test1252 test1253 test1254 test1255 test1256 test1257 test1258 test1259 test126 test1260 test1261 test1262 test1263 test1264 test1265 test1266 test1267 test1268 test1269 test127 test1270 test1271 test1272 test1273 test1274 test1275 test1276 test1277 test1278 test1279 test128 test1280 test1281 test1282 test1283 test1284 test1285 test1286 test1287 test1288 test1289 test129 test1290 test1291 test1292 test1293 test1294 test1295 test1296 test1297 test1298 test1299 test13 test130 test1300 test1301 test1302 test1303 test1304 test1305 test1306 test1307 test1308 test1309 test131 test1310 test1311 test1312 test1313 test1314 test1315 test1316 test1317 test1318 test1319 test132 test1320 test1321 test1322 test1323 test1324 test1325 test1326 test1327 test1328 test1329 test133 test1330 test1331 test1332 test1333 test1334 test1335 test1336 test1337 test1338 test1339 test134 test1340 test1341 test1342 test1343 test1344 test1345 test1346 test1347 test1348 test1349 test135 test1350 test1351 test1352 test1353 test1354 test1355 test1356 test1357 test1358 test1359 test136 test1360 test1361 test1362 test1363 test1364 test1365 test1366 test1367 test1368 test1369 test137 test1370 test1371 test1372 test1373 test1374 test1375 test1376 test1377 test1378 test1379 test138 test1380 test1381 test1382 test1383 test1384 test1385 test1386 test1387 test1388 test1389 test139 test1390 test1391 test1392 test1393 test1394 test1395 test1396 test1397 test1398 test1399 test14 test140 test1400 test1401 test1402 test1403 test1404 test1405 test1406 test1407 test1408 test1409 test141 test1410 test1411 test1412 test1413 test1414 test1415 test1416 test1417 test1418 test1419 test142 test1420 test1421 test1422 test1423 test1424 test1425 test1426 test1427 test1428 test1429 test143 test1430 test1431 test1432 test1433 test1434 test1435 test1436 test1437 test1438 test1439 test144 test1440 test1441 test1442 test1443 test1444 test1445 test1446 test1447 test1448 test1449 test145 test1450 test1451 test1452 test1453 test1454 test1455 test1456 test1457 test1458 test1459 test146 test1460 test1461 test1462 test1463 test1464 test1465 test1466 test1467 test1468 test1469 test147 test1470 test1471 test1472 test1473 test1474 test1475 test1476 test1477 test1478 test1479 test148 test1480 test1481 test1482 test1483 test1484 test1485 test1486 test1487 test1488 test1489 test149 test1490 test1491 test1492 test1493 test1494 test1495 test1496 test1497 test1498 test1499 test15 test150 test1500 test1501 test1502 test1503 test1504 test1505 test1506 test1507 test1508 test1509 test151 test1510 test1511 test1512 test1513 test1514 test1515 test1516 test1517 test1518 test1519 test152 test1520 test1521 test1522 test1523 test1524 test1525 test1526 test1527 test1528 test1529 test153 test1530 test1531 test1532 test1533 test1534 test1535 test1536 test1537 test1538 test1539 test154 test1540 test1541 test1542 test1543 test1544 test1545 test1546 test1547 test1548 test1549 test155 test1550 test1551 test1552 test1553 test1554 test1555 test1556 test1557 test1558 test1559 test156 test1560 test1561 test1562 test1563 test1564 test1565 test1566 test1567 test1568 test1569 test157 test1570 test1571 test1572 test1573 test1574 test1575 test1576 test1577 test1578 test1579 test158 test1580 test1581 test1582 test1583 test1584 test1585 test1586 test1587 test1588 test1589 test159 test1590 test1591 test1592 test1593 test1594 test1595 test1596 test1597 test1598 test1599 test16 test160 test1600 test1601 test1602 test1603 test1604 test1605 test1606 test1607 test1608 test1609 test161 test1610 test1611 test1612 test1613 test1614 test1615 test1616 test1617 test1618 test1619 test162 test1620 test1621 test1622 test1623 test1624 test1625 test1626 test1627 test1628 test1629 test163 test1630 test1631 test1632 test1633 test1634 test1635 test1636 test1637 test1638 test1639 test164 test1640 test1641 test1642 test1643 test1644 test1645 test165 test1650 test1651 test1652 test1653 test1654 test1655 test1656 test1657 test1658 test1659 test166 test1660 test1661 test1662 test1663 test1664 test1665 test1666 test1667 test1668 test1669 test167 test1670 test1671 test1672 test1673 test1674 test1675 test1676 test168 test1680 test1681 test1682 test1683 test1684 test1685 test169 test17 test170 test1700 test1701 test1702 test1703 test1704 test1705 test1706 test1707 test1708 test1709 test171 test1710 test1711 test1712 test1713 test1714 test1715 test172 test1720 test1721 test173 test174 test175 test176 test177 test178 test179 test18 test180 test1800 test1801 test1802 test181 test182 test183 test184 test1847 test1848 test1849 test185 test1850 test1851 test186 test187 test188 test189 test19 test190 test1900 test1901 test1902 test1903 test1904 test1905 test1906 test1907 test1908 test1909 test191 test1910 test1911 test1912 test1913 test1914 test1915 test1916 test1917 test1918 test1919 test192 test1920 test1921 test193 test1933 test1934 test1935 test1936 test1937 test1938 test1939 test194 test1940 test1941 test1942 test1943 test1944 test1945 test1946 test1947 test1948 test195 test1955 test1956 test1957 test1958 test1959 test196 test1960 test1964 test1965 test1966 test197 test1970 test1971 test1972 test1973 test1974 test1975 test1976 test1977 test1978 test1979 test198 test1980 test1981 test1982 test1983 test1984 test199 test2 test20 test200 test2000 test2001 test2002 test2003 test2004 test2005 test2006 test2007 test2008 test2009 test201 test2010 test2011 test2012 test2013 test2014 test202 test2023 test2024 test2025 test2026 test2027 test2028 test2029 test203 test2030 test2031 test2032 test2033 test2034 test2035 test2037 test2038 test2039 test204 test2040 test2041 test2042 test2043 test2044 test2045 test2046 test2047 test2048 test2049 test205 test2050 test2051 test2052 test2053 test2054 test2055 test2056 test2057 test2058 test2059 test206 test2060 test2061 test2062 test2063 test2064 test2065 test2066 test2067 test2068 test2069 test207 test2070 test2071 test2072 test2073 test2074 test2075 test2076 test2077 test2078 test2079 test208 test2080 test2081 test2082 test2083 test2084 test2085 test2086 test2087 test2088 test2089 test209 test2090 test2091 test2092 test21 test210 test2100 test2101 test2102 test2103 test2104 test211 test212 test213 test214 test215 test216 test217 test218 test219 test22 test220 test2200 test2201 test2202 test2203 test2204 test2205 test2206 test2207 test221 test222 test223 test224 test225 test226 test227 test228 test229 test23 test230 test2300 test2301 test2302 test2303 test2304 test2306 test2307 test2308 test2309 test231 test232 test233 test234 test235 test236 test237 test238 test239 test24 test240 test2400 test2401 test2402 test2403 test2404 test2405 test2406 test2407 test2408 test2409 test241 test2410 test2411 test242 test243 test244 test245 test246 test247 test248 test249 test25 test250 test2500 test2501 test2502 test2503 test2504 test2505 test2506 test251 test252 test253 test254 test255 test256 test257 test258 test259 test26 test260 test2600 test2601 test2602 test2603 test2604 test2605 test261 test262 test263 test264 test265 test266 test267 test268 test269 test27 test270 test2700 test2701 test2702 test2703 test2704 test2705 test2706 test2707 test2708 test2709 test271 test2710 test2711 test2712 test2713 test2714 test2715 test2716 test2717 test2718 test2719 test272 test2720 test2721 test2722 test2723 test273 test274 test275 test276 test277 test278 test279 test28 test280 test281 test282 test283 test284 test285 test286 test287 test288 test289 test29 test290 test291 test292 test293 test294 test295 test296 test297 test298 test299 test3 test30 test300 test3000 test3001 test3002 test3003 test3004 test3005 test3006 test3007 test3008 test3009 test301 test3010 test3011 test3012 test3013 test3014 test3015 test3016 test3017 test3018 test3019 test302 test3020 test3021 test3022 test3023 test3024 test3025 test3026 test3027 test3028 test3029 test303 test3030 test3031 test3032 test3033 test3034 test3035 test3036 test304 test305 test306 test307 test308 test309 test31 test310 test3100 test3101 test3102 test3103 test3104 test3105 test3106 test311 test312 test313 test314 test315 test316 test317 test318 test319 test32 test320 test3200 test3201 test3202 test3203 test3204 test3205 test3206 test3207 test3208 test3209 test321 test3210 test3211 test3212 test3213 test3214 test3215 test3216 test3217 test3218 test3219 test322 test3220 test323 test324 test325 test326 test327 test328 test329 test33 test330 test3300 test3301 test3302 test331 test332 test333 test334 test335 test336 test337 test338 test339 test34 test340 test341 test342 test343 test344 test345 test346 test347 test348 test349 test35 test350 test351 test352 test353 test354 test355 test356 test357 test358 test359 test36 test360 test361 test362 test363 test364 test365 test366 test367 test368 test369 test37 test370 test371 test372 test373 test374 test375 test376 test378 test379 test38 test380 test381 test383 test384 test385 test386 test387 test388 test389 test39 test390 test391 test392 test393 test394 test395 test396 test397 test398 test399 test4 test40 test400 test4000 test4001 test401 test402 test403 test404 test405 test406 test407 test408 test409 test41 test410 test411 test412 test413 test414 test415 test416 test417 test418 test419 test42 test420 test421 test422 test423 test424 test425 test426 test427 test428 test429 test43 test430 test431 test432 test433 test434 test435 test436 test437 test438 test439 test44 test440 test441 test442 test443 test444 test445 test446 test447 test448 test449 test45 test450 test451 test452 test453 test454 test455 test456 test457 test458 test459 test46 test460 test461 test462 test463 test467 test468 test469 test47 test470 test471 test472 test473 test474 test475 test476 test477 test478 test479 test48 test480 test481 test482 test483 test484 test485 test486 test487 test488 test489 test49 test490 test491 test492 test493 test494 test495 test496 test497 test498 test499 test5 test50 test500 test501 test502 test503 test504 test505 test506 test507 test508 test509 test51 test510 test511 test512 test513 test514 test515 test516 test517 test518 test519 test52 test520 test521 test522 test523 test524 test525 test526 test527 test528 test529 test53 test530 test531 test532 test533 test534 test535 test536 test537 test538 test539 test54 test540 test541 test542 test543 test544 test545 test546 test547 test548 test549 test55 test550 test551 test552 test553 test554 test555 test556 test557 test558 test559 test56 test560 test561 test562 test563 test564 test565 test566 test567 test568 test569 test57 test570 test571 test572 test573 test574 test575 test576 test577 test578 test579 test58 test580 test581 test582 test583 test584 test585 test586 test587 test588 test589 test59 test590 test591 test592 test593 test594 test595 test596 test597 test598 test599 test6 test60 test600 test601 test602 test603 test604 test605 test606 test607 test608 test609 test61 test610 test611 test612 test613 test614 test615 test616 test617 test618 test619 test62 test620 test621 test622 test623 test624 test625 test626 test627 test628 test629 test63 test630 test631 test632 test633 test634 test635 test636 test637 test638 test639 test64 test640 test641 test642 test643 test644 test645 test646 test647 test648 test649 test65 test650 test651 test652 test653 test654 test655 test656 test658 test659 test66 test660 test661 test662 test663 test664 test665 test666 test667 test668 test669 test67 test670 test671 test672 test673 test674 test675 test676 test677 test678 test679 test68 test680 test681 test682 test683 test684 test685 test686 test687 test688 test689 test69 test690 test691 test692 test693 test694 test695 test696 test697 test698 test699 test7 test70 test700 test701 test702 test703 test704 test705 test706 test707 test708 test709 test71 test710 test711 test712 test713 test714 test715 test716 test717 test718 test719 test72 test720 test721 test722 test723 test724 test725 test726 test727 test728 test729 test73 test730 test731 test732 test733 test734 test735 test736 test737 test738 test739 test74 test740 test741 test742 test743 test744 test745 test746 test747 test748 test749 test75 test750 test751 test752 test753 test754 test755 test756 test757 test758 test759 test76 test760 test761 test762 test763 test764 test765 test766 test767 test768 test769 test77 test770 test771 test772 test773 test774 test775 test776 test777 test778 test779 test78 test780 test781 test782 test783 test784 test785 test786 test787 test788 test789 test79 test790 test791 test792 test793 test794 test795 test796 test797 test798 test799 test8 test80 test800 test801 test802 test803 test804 test805 test806 test807 test808 test809 test81 test810 test811 test812 test813 test814 test815 test816 test817 test818 test819 test82 test820 test821 test822 test823 test824 test825 test826 test827 test828 test829 test83 test830 test831 test832 test833 test834 test835 test836 test837 test838 test839 test84 test840 test841 test842 test843 test844 test845 test846 test847 test848 test849 test85 test850 test851 test852 test853 test854 test855 test856 test857 test858 test859 test86 test860 test861 test862 test863 test864 test865 test866 test867 test868 test869 test87 test870 test871 test872 test873 test874 test875 test876 test877 test878 test879 test88 test880 test881 test882 test883 test884 test885 test886 test887 test888 test889 test89 test890 test891 test892 test893 test894 test895 test896 test897 test898 test899 test9 test90 test900 test901 test902 test903 test904 test905 test906 test907 test908 test909 test91 test910 test911 test912 test913 test914 test915 test916 test917 test918 test919 test92 test920 test921 test922 test923 test924 test925 test926 test927 test928 test929 test93 test930 test931 test932 test933 test934 test935 test936 test937 test938 test939 test94 test940 test941 test942 test943 test944 test945 test946 test947 test948 test949 test95 test950 test951 test952 test953 test954 test955 test956 test957 test958 test959 test96 test960 test961 test962 test963 test964 test965 test966 test967 test968 test969 test97 test970 test971 test972 test973 test974 test975 test976 test977 test978 test979 test98 test980 test981 test982 test983 test984 test985 test986 test987 test988 test989 test99 test990 test991 test992 test993 test994 test995 test996 test997 test998 test999http
testenv
__init__.py caddy.py certs.py client.py curl.py dante.py dnsd.py env.py httpd.py nghttpx.py ports.py sshd.py vsftpd.py ws_echo_server.pylibtest
.gitignore CMakeLists.txt Makefile.am Makefile.inc cli_ftp_upload.c cli_h2_pausing.c cli_h2_serverpush.c cli_h2_upgrade_extreme.c cli_hx_download.c cli_hx_upload.c cli_tls_session_reuse.c cli_upload_pausing.c cli_ws_data.c cli_ws_pingpong.c first.c first.h lib1156.c lib1301.c lib1308.c lib1485.c lib1500.c lib1501.c lib1502.c lib1506.c lib1507.c lib1508.c lib1509.c lib1510.c lib1511.c lib1512.c lib1513.c lib1514.c lib1515.c lib1517.c lib1518.c lib1520.c lib1522.c lib1523.c lib1525.c lib1526.c lib1527.c lib1528.c lib1529.c lib1530.c lib1531.c lib1532.c lib1533.c lib1534.c lib1535.c lib1536.c lib1537.c lib1538.c lib1540.c lib1541.c lib1542.c lib1545.c lib1549.c lib1550.c lib1551.c lib1552.c lib1553.c lib1554.c lib1555.c lib1556.c lib1557.c lib1558.c lib1559.c lib1560.c lib1564.c lib1565.c lib1567.c lib1568.c lib1569.c lib1571.c lib1576.c lib1582.c lib1587.c lib1588.c lib1589.c lib1591.c lib1592.c lib1593.c lib1594.c lib1597.c lib1598.c lib1599.c lib1662.c lib1900.c lib1901.c lib1902.c lib1903.c lib1905.c lib1906.c lib1907.c lib1908.c lib1910.c lib1911.c lib1912.c lib1913.c lib1915.c lib1916.c lib1918.c lib1919.c lib1920.c lib1921.c lib1933.c lib1934.c lib1935.c lib1936.c lib1937.c lib1938.c lib1939.c lib1940.c lib1945.c lib1947.c lib1948.c lib1955.c lib1956.c lib1957.c lib1958.c lib1959.c lib1960.c lib1964.c lib1965.c lib1970.c lib1971.c lib1972.c lib1973.c lib1974.c lib1975.c lib1977.c lib1978.c lib2023.c lib2032.c lib2082.c lib2301.c lib2302.c lib2304.c lib2306.c lib2308.c lib2309.c lib2402.c lib2404.c lib2405.c lib2502.c lib2504.c lib2505.c lib2506.c lib2700.c lib3010.c lib3025.c lib3026.c lib3027.c lib3033.c lib3034.c lib3100.c lib3101.c lib3102.c lib3103.c lib3104.c lib3105.c lib3207.c lib3208.c lib500.c lib501.c lib502.c lib503.c lib504.c lib505.c lib506.c lib507.c lib508.c lib509.c lib510.c lib511.c lib512.c lib513.c lib514.c lib515.c lib516.c lib517.c lib518.c lib519.c lib520.c lib521.c lib523.c lib524.c lib525.c lib526.c lib530.c lib533.c lib536.c lib537.c lib539.c lib540.c lib541.c lib542.c lib543.c lib544.c lib547.c lib549.c lib552.c lib553.c lib554.c lib555.c lib556.c lib557.c lib558.c lib559.c lib560.c lib562.c lib564.c lib566.c lib567.c lib568.c lib569.c lib570.c lib571.c lib572.c lib573.c lib574.c lib575.c lib576.c lib578.c lib579.c lib582.c lib583.c lib586.c lib589.c lib590.c lib591.c lib597.c lib598.c lib599.c lib643.c lib650.c lib651.c lib652.c lib653.c lib654.c lib655.c lib658.c lib659.c lib661.c lib666.c lib667.c lib668.c lib670.c lib674.c lib676.c lib677.c lib678.c lib694.c lib695.c lib751.c lib753.c lib757.c lib758.c lib766.c memptr.c mk-lib1521.pl test1013.pl test1022.pl test307.pl test610.pl test613.pl testtrace.c testtrace.h testutil.c testutil.h unitcheck.hserver
.checksrc .gitignore CMakeLists.txt Makefile.am Makefile.inc dnsd.c first.c first.h getpart.c mqttd.c resolve.c rtspd.c sockfilt.c socksd.c sws.c tftpd.c util.ctunit
.gitignore CMakeLists.txt Makefile.am Makefile.inc README.md tool1394.c tool1604.c tool1621.c tool1622.c tool1623.c tool1720.cunit
.gitignore CMakeLists.txt Makefile.am Makefile.inc README.md unit1300.c unit1302.c unit1303.c unit1304.c unit1305.c unit1307.c unit1309.c unit1323.c unit1330.c unit1395.c unit1396.c unit1397.c unit1398.c unit1399.c unit1600.c unit1601.c unit1602.c unit1603.c unit1605.c unit1606.c unit1607.c unit1608.c unit1609.c unit1610.c unit1611.c unit1612.c unit1614.c unit1615.c unit1616.c unit1620.c unit1625.c unit1626.c unit1627.c unit1636.c unit1650.c unit1651.c unit1652.c unit1653.c unit1654.c unit1655.c unit1656.c unit1657.c unit1658.c unit1660.c unit1661.c unit1663.c unit1664.c unit1666.c unit1667.c unit1668.c unit1669.c unit1674.c unit1675.c unit1676.c unit1979.c unit1980.c unit2600.c unit2601.c unit2602.c unit2603.c unit2604.c unit2605.c unit3200.c unit3205.c unit3211.c unit3212.c unit3213.c unit3214.c unit3216.c unit3219.c unit3300.c unit3301.c unit3302.cexamples
.env config.ini crypto_test.lua env_test.lua fs_example.lua http_server.lua https_test.lua ini_example.lua json.lua log.lua path_fs_example.lua process_example.lua request_download.lua request_test.lua run_all.lua sqlite_example.lua sqlite_http_template.lua stash_test.lua template_test.lua timer.lua websocket.luainiparser
example
iniexample.c iniwrite.c parse.c twisted-errors.ini twisted-genhuge.py twisted-ofkey.ini twisted-ofval.ini twisted.initest
CMakeLists.txt test_dictionary.c test_iniparser.c unity-config.yml unity_config.hjinjac
libjinjac
src
CMakeLists.txt ast.c ast.h block_statement.c block_statement.h buffer.c buffer.h buildin.c buildin.h common.h convert.c convert.h flex_decl.h jfunction.c jfunction.h jinja_expression.l jinja_expression.y jinjac_parse.c jinjac_parse.h jinjac_stream.c jinjac_stream.h jlist.c jlist.h jobject.c jobject.h parameter.c parameter.h str_obj.c str_obj.h trace.c trace.htest
.gitignore CMakeLists.txt autotest.rb test_01.expected test_01.jinja test_01b.expected test_01b.jinja test_01c.expected test_01c.jinja test_01d.expected test_01d.jinja test_02.expected test_02.jinja test_03.expected test_03.jinja test_04.expected test_04.jinja test_05.expected test_05.jinja test_06.expected test_06.jinja test_07.expected test_07.jinja test_08.expected test_08.jinja test_08b.expected test_08b.jinja test_09.expected test_09.jinja test_10.expected test_10.jinja test_11.expected test_11.jinja test_12.expected test_12.jinja test_13.expected test_13.jinja test_14.expected test_14.jinja test_15.expected test_15.jinja test_16.expected test_16.jinja test_17.expected test_17.jinja test_18.expected test_18.jinja test_18b.expected test_18b.jinja test_18c.expected test_18c.jinja test_19.expected test_19.jinja test_19b.expected test_19b.jinja test_19c.expected test_19c.jinja test_19d.expected test_19d.jinja test_19e.expected test_19e.jinja test_19f.expected test_19f.jinja test_20.expected test_20.jinja test_21.expected test_21.jinja test_22.expected test_22.jinja test_22a.expected test_22a.jinja test_22b.expected test_22b.jinja test_23.expected test_23.jinja test_24.expected test_24.jinjalibev
Changes LICENSE Makefile Makefile.am Makefile.in README Symbols.ev Symbols.event aclocal.m4 autogen.sh compile config.guess config.h config.h.in config.status config.sub configure configure.ac depcomp ev++.h ev.3 ev.c ev.h ev.pod ev_epoll.c ev_kqueue.c ev_poll.c ev_port.c ev_select.c ev_vars.h ev_win32.c ev_wrap.h event.c event.h install-sh libev.m4 libtool ltmain.sh missing mkinstalldirs stamp-h1luajit
doc
bluequad-print.css bluequad.css contact.html ext_buffer.html ext_c_api.html ext_ffi.html ext_ffi_api.html ext_ffi_semantics.html ext_ffi_tutorial.html ext_jit.html ext_profiler.html extensions.html install.html luajit.html running.html
dynasm
dasm_arm.h dasm_arm.lua dasm_arm64.h dasm_arm64.lua dasm_mips.h dasm_mips.lua dasm_mips64.lua dasm_ppc.h dasm_ppc.lua dasm_proto.h dasm_x64.lua dasm_x86.h dasm_x86.lua dynasm.luasrc
host
.gitignore README buildvm.c buildvm.h buildvm_asm.c buildvm_fold.c buildvm_lib.c buildvm_libbc.h buildvm_peobj.c genlibbc.lua genminilua.lua genversion.lua minilua.cjit
.gitignore bc.lua bcsave.lua dis_arm.lua dis_arm64.lua dis_arm64be.lua dis_mips.lua dis_mips64.lua dis_mips64el.lua dis_mips64r6.lua dis_mips64r6el.lua dis_mipsel.lua dis_ppc.lua dis_x64.lua dis_x86.lua dump.lua p.lua v.lua zone.luawolfssl
.github
workflows
ada.yml arduino.yml async-examples.yml async.yml atecc608-sim.yml bind.yml cmake-autoconf.yml cmake.yml codespell.yml coverity-scan-fixes.yml cryptocb-only.yml curl.yml cyrus-sasl.yml disable-pk-algs.yml docker-Espressif.yml docker-OpenWrt.yml emnet-nonblock.yml fil-c.yml freertos-mem-track.yml gencertbuf.yml grpc.yml haproxy.yml hostap-vm.yml intelasm-c-fallback.yml ipmitool.yml jwt-cpp.yml krb5.yml libspdm.yml libssh2.yml libvncserver.yml linuxkm.yml macos-apple-native-cert-validation.yml mbedtls.sh mbedtls.yml membrowse-comment.yml membrowse-onboard.yml membrowse-report.yml memcached.sh memcached.yml mono.yml mosquitto.yml msmtp.yml msys2.yml multi-arch.yml multi-compiler.yml net-snmp.yml nginx.yml no-malloc.yml no-tls.yml nss.sh nss.yml ntp.yml ocsp.yml openldap.yml openssh.yml openssl-ech.yml opensslcoexist.yml openvpn.yml os-check.yml packaging.yml pam-ipmi.yml pq-all.yml pr-commit-check.yml psk.yml puf.yml python.yml rng-tools.yml rust-wrapper.yml se050-sim.yml smallStackSize.yml socat.yml softhsm.yml sssd.yml stm32-sim.yml stsafe-a120-sim.yml stunnel.yml symbol-prefixes.yml threadx.yml tls-anvil.yml trackmemory.yml watcomc.yml win-csharp-test.yml wolfCrypt-Wconversion.yml wolfboot-integration.yml wolfsm.yml xcode.yml zephyr-4.x.yml zephyr.ymlIDE
ARDUINO
Arduino_README_prepend.md README.md include.am keywords.txt library.properties.template wolfssl-arduino.cpp wolfssl-arduino.sh wolfssl.hECLIPSE
Espressif
ESP-IDF
examples
template
CMakeLists.txt Makefile README.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp8266wolfssl_benchmark
VisualGDB
wolfssl_benchmark_IDF_v4.4_ESP32.sln wolfssl_benchmark_IDF_v4.4_ESP32.vgdbproj wolfssl_benchmark_IDF_v5_ESP32.sln wolfssl_benchmark_IDF_v5_ESP32.vgdbproj wolfssl_benchmark_IDF_v5_ESP32C3.sln wolfssl_benchmark_IDF_v5_ESP32C3.vgdbproj wolfssl_benchmark_IDF_v5_ESP32S3.sln wolfssl_benchmark_IDF_v5_ESP32S3.vgdbprojwolfssl_client
CMakeLists.txt Makefile README.md README_server_sm.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp32c2 sdkconfig.defaults.esp8266 wolfssl_client_ESP8266.vgdbprojwolfssl_server
CMakeLists.txt Makefile README.md README_server_sm.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp32c2 sdkconfig.defaults.esp8266 wolfssl_server_ESP8266.vgdbprojwolfssl_test
VisualGDB
wolfssl_test-IDF_v5_ESP32.sln wolfssl_test-IDF_v5_ESP32.vgdbproj wolfssl_test-IDF_v5_ESP32C3.sln wolfssl_test-IDF_v5_ESP32C3.vgdbproj wolfssl_test-IDF_v5_ESP32C6.sln wolfssl_test-IDF_v5_ESP32C6.vgdbproj wolfssl_test_IDF_v5_ESP32S3.sln wolfssl_test_IDF_v5_ESP32S3.vgdbprojGCC-ARM
Makefile Makefile.bench Makefile.client Makefile.common Makefile.server Makefile.static Makefile.test README.md include.am linker.ld linker_fips.ldIAR-EWARM
embOS
SAMV71_XULT
embOS_SAMV71_XULT_user_settings
user_settings.h user_settings_simple_example.h user_settings_verbose_example.hembOS_wolfcrypt_benchmark_SAMV71_XULT
README_wolfcrypt_benchmark wolfcrypt_benchmark.ewd wolfcrypt_benchmark.ewpINTIME-RTOS
Makefile README.md include.am libwolfssl.c libwolfssl.vcxproj user_settings.h wolfExamples.c wolfExamples.h wolfExamples.sln wolfExamples.vcxproj wolfssl-lib.sln wolfssl-lib.vcxprojMQX
Makefile README-jp.md README.md client-tls.c include.am server-tls.c user_config.h user_settings.hMSVS-2019-AZSPHERE
wolfssl_new_azsphere
.gitignore CMakeLists.txt CMakeSettings.json app_manifest.json applibs_versions.h launch.vs.json main.cNETOS
Makefile.wolfcrypt.inc README.md include.am user_settings.h user_settings.h-cert2425 user_settings.h-cert3389 wolfssl_netos_custom.cPlatformIO
examples
wolfssl_benchmark
CMakeLists.txt README.md platformio.ini sdkconfig.defaults wolfssl_benchmark.code-workspaceROWLEY-CROSSWORKS-ARM
Kinetis_FlashPlacement.xml README.md arm_startup.c benchmark_main.c hw.h include.am kinetis_hw.c retarget.c test_main.c user_settings.h wolfssl.hzp wolfssl_ltc.hzpRenesas
e2studio
RA6M3
README.md README_APRA6M_en.md README_APRA6M_jp.md include.amRX72N
EnvisionKit
Simple
README_EN.md README_JP.mdwolfssl_demo
key_data.c key_data.h user_settings.h wolfssl_demo.c wolfssl_demo.h wolfssl_tsip_unit_test.cSTM32Cube
README.md STM32_Benchmarks.md default_conf.ftl include.am main.c wolfssl_example.c wolfssl_example.hWIN
README.txt include.am test.vcxproj user_settings.h user_settings_dtls.h wolfssl-fips.sln wolfssl-fips.vcxprojWIN-SRTP-KDF-140-3
README.txt include.am resource.h test.vcxproj user_settings.h wolfssl-fips.rc wolfssl-fips.sln wolfssl-fips.vcxprojWIN10
README.txt include.am resource.h test.vcxproj user_settings.h wolfssl-fips.rc wolfssl-fips.sln wolfssl-fips.vcxprojXCODE
Benchmark
include.amXilinxSDK
README.md bench.sh combine.sh eclipse_formatter_profile.xml graph.sh include.am user_settings.h wolfssl_example.capple-universal
wolfssl-multiplatform
iotsafe
Makefile README.md ca-cert.c devices.c devices.h include.am main.c memory-tls.c startup.c target.ld user_settings.hmynewt
README.md apps.wolfcrypttest.pkg.yml crypto.wolfssl.pkg.yml crypto.wolfssl.syscfg.yml include.am setup.shcerts
1024
ca-cert.der ca-cert.pem ca-key.der ca-key.pem client-cert.der client-cert.pem client-key.der client-key.pem client-keyPub.der dh1024.der dh1024.pem dsa-pub-1024.pem dsa1024.der dsa1024.pem include.am rsa1024.der server-cert.der server-cert.pem server-key.der server-key.pemcrl
extra-crls
ca-int-cert-revoked.pem claim-root.pem crl_critical_entry.pem crlnum_57oct.pem crlnum_64oct.pem general-server-crl.pem large_crlnum.pem large_crlnum2.pemdilithium
bench_dilithium_level2_key.der bench_dilithium_level3_key.der bench_dilithium_level5_key.der include.amecc
bp256r1-key.der bp256r1-key.pem ca-secp256k1-cert.pem ca-secp256k1-key.pem client-bp256r1-cert.der client-bp256r1-cert.pem client-secp256k1-cert.der client-secp256k1-cert.pem genecc.sh include.am secp256k1-key.der secp256k1-key.pem secp256k1-param.pem secp256k1-privkey.der secp256k1-privkey.pem server-bp256r1-cert.der server-bp256r1-cert.pem server-secp256k1-cert.der server-secp256k1-cert.pem server2-secp256k1-cert.der server2-secp256k1-cert.pem wolfssl.cnf wolfssl_384.cnfed25519
ca-ed25519-key.der ca-ed25519-key.pem ca-ed25519-priv.der ca-ed25519-priv.pem ca-ed25519.der ca-ed25519.pem client-ed25519-key.der client-ed25519-key.pem client-ed25519-priv.der client-ed25519-priv.pem client-ed25519.der client-ed25519.pem eddsa-ed25519.der eddsa-ed25519.pem gen-ed25519-certs.sh gen-ed25519-keys.sh gen-ed25519.sh include.am root-ed25519-key.der root-ed25519-key.pem root-ed25519-priv.der root-ed25519-priv.pem root-ed25519.der root-ed25519.pem server-ed25519-cert.pem server-ed25519-key.der server-ed25519-key.pem server-ed25519-priv.der server-ed25519-priv.pem server-ed25519.der server-ed25519.pemed448
ca-ed448-key.der ca-ed448-key.pem ca-ed448-priv.der ca-ed448-priv.pem ca-ed448.der ca-ed448.pem client-ed448-key.der client-ed448-key.pem client-ed448-priv.der client-ed448-priv.pem client-ed448.der client-ed448.pem gen-ed448-certs.sh gen-ed448-keys.sh include.am root-ed448-key.der root-ed448-key.pem root-ed448-priv.der root-ed448-priv.pem root-ed448.der root-ed448.pem server-ed448-cert.pem server-ed448-key.der server-ed448-key.pem server-ed448-priv.der server-ed448-priv.pem server-ed448.der server-ed448.pemexternal
DigiCertGlobalRootCA.pem README.txt ca-digicert-ev.pem ca-globalsign-root.pem ca-google-root.pem ca_collection.pem include.amintermediate
ca_false_intermediate
gentestcert.sh int_ca.key server.key test_ca.key test_ca.pem test_int_not_cacert.pem test_sign_bynoca_srv.pem wolfssl_base.conf wolfssl_srv.conflms
bc_hss_L2_H5_W8_root.der bc_hss_L3_H5_W4_root.der bc_lms_chain_ca.der bc_lms_chain_leaf.der bc_lms_native_bc_root.der bc_lms_sha256_h10_w8_root.der bc_lms_sha256_h5_w4_root.der include.ammldsa
README.txt include.am mldsa44-cert.der mldsa44-cert.pem mldsa44-key.pem mldsa44_bare-priv.der mldsa44_bare-seed.der mldsa44_oqskeypair.der mldsa44_priv-only.der mldsa44_pub-spki.der mldsa44_seed-only.der mldsa44_seed-priv.der mldsa65-cert.der mldsa65-cert.pem mldsa65-key.pem mldsa65_bare-priv.der mldsa65_bare-seed.der mldsa65_oqskeypair.der mldsa65_priv-only.der mldsa65_pub-spki.der mldsa65_seed-only.der mldsa65_seed-priv.der mldsa87-cert.der mldsa87-cert.pem mldsa87-key.pem mldsa87_bare-priv.der mldsa87_bare-seed.der mldsa87_oqskeypair.der mldsa87_priv-only.der mldsa87_pub-spki.der mldsa87_seed-only.der mldsa87_seed-priv.derocsp
imposter-root-ca-cert.der imposter-root-ca-cert.pem imposter-root-ca-key.der imposter-root-ca-key.pem include.am index-ca-and-intermediate-cas.txt index-ca-and-intermediate-cas.txt.attr index-intermediate1-ca-issued-certs.txt index-intermediate1-ca-issued-certs.txt.attr index-intermediate2-ca-issued-certs.txt index-intermediate2-ca-issued-certs.txt.attr index-intermediate3-ca-issued-certs.txt index-intermediate3-ca-issued-certs.txt.attr intermediate1-ca-cert.der intermediate1-ca-cert.pem intermediate1-ca-key.der intermediate1-ca-key.pem intermediate2-ca-cert.der intermediate2-ca-cert.pem intermediate2-ca-key.der intermediate2-ca-key.pem intermediate3-ca-cert.der intermediate3-ca-cert.pem intermediate3-ca-key.der intermediate3-ca-key.pem ocsp-responder-cert.der ocsp-responder-cert.pem ocsp-responder-key.der ocsp-responder-key.pem openssl.cnf renewcerts-for-test.sh renewcerts.sh root-ca-cert.der root-ca-cert.pem root-ca-crl.pem root-ca-key.der root-ca-key.pem server1-cert.der server1-cert.pem server1-chain-noroot.pem server1-key.der server1-key.pem server2-cert.der server2-cert.pem server2-key.der server2-key.pem server3-cert.der server3-cert.pem server3-key.der server3-key.pem server4-cert.der server4-cert.pem server4-key.der server4-key.pem server5-cert.der server5-cert.pem server5-key.der server5-key.pem test-leaf-response.der test-multi-response.der test-response-nointern.der test-response-rsapss.der test-response.derp521
ca-p521-key.der ca-p521-key.pem ca-p521-priv.der ca-p521-priv.pem ca-p521.der ca-p521.pem client-p521-key.der client-p521-key.pem client-p521-priv.der client-p521-priv.pem client-p521.der client-p521.pem gen-p521-certs.sh gen-p521-keys.sh include.am root-p521-key.der root-p521-key.pem root-p521-priv.der root-p521-priv.pem root-p521.der root-p521.pem server-p521-cert.pem server-p521-key.der server-p521-key.pem server-p521-priv.der server-p521-priv.pem server-p521.der server-p521.pemrpk
client-cert-rpk.der client-ecc-cert-rpk.der include.am server-cert-rpk.der server-ecc-cert-rpk.derrsapss
ca-3072-rsapss-key.der ca-3072-rsapss-key.pem ca-3072-rsapss-priv.der ca-3072-rsapss-priv.pem ca-3072-rsapss.der ca-3072-rsapss.pem ca-rsapss-key.der ca-rsapss-key.pem ca-rsapss-priv.der ca-rsapss-priv.pem ca-rsapss.der ca-rsapss.pem client-3072-rsapss-key.der client-3072-rsapss-key.pem client-3072-rsapss-priv.der client-3072-rsapss-priv.pem client-3072-rsapss.der client-3072-rsapss.pem client-rsapss-key.der client-rsapss-key.pem client-rsapss-priv.der client-rsapss-priv.pem client-rsapss.der client-rsapss.pem gen-rsapss-keys.sh include.am renew-rsapss-certs.sh root-3072-rsapss-key.der root-3072-rsapss-key.pem root-3072-rsapss-priv.der root-3072-rsapss-priv.pem root-3072-rsapss.der root-3072-rsapss.pem root-rsapss-key.der root-rsapss-key.pem root-rsapss-priv.der root-rsapss-priv.pem root-rsapss.der root-rsapss.pem server-3072-rsapss-cert.pem server-3072-rsapss-key.der server-3072-rsapss-key.pem server-3072-rsapss-priv.der server-3072-rsapss-priv.pem server-3072-rsapss.der server-3072-rsapss.pem server-mix-rsapss-cert.pem server-rsapss-cert.pem server-rsapss-key.der server-rsapss-key.pem server-rsapss-priv.der server-rsapss-priv.pem server-rsapss.der server-rsapss.pemslhdsa
bench_slhdsa_sha2_128f_key.der bench_slhdsa_sha2_128s_key.der bench_slhdsa_sha2_192f_key.der bench_slhdsa_sha2_192s_key.der bench_slhdsa_sha2_256f_key.der bench_slhdsa_sha2_256s_key.der bench_slhdsa_shake128f_key.der bench_slhdsa_shake128s_key.der bench_slhdsa_shake192f_key.der bench_slhdsa_shake192s_key.der bench_slhdsa_shake256f_key.der bench_slhdsa_shake256s_key.der client-mldsa44-priv.pem client-mldsa44-sha2.der client-mldsa44-sha2.pem client-mldsa44-shake.der client-mldsa44-shake.pem gen-slhdsa-mldsa-certs.sh include.am root-slhdsa-sha2-128s-priv.der root-slhdsa-sha2-128s-priv.pem root-slhdsa-sha2-128s.der root-slhdsa-sha2-128s.pem root-slhdsa-shake-128s-priv.der root-slhdsa-shake-128s-priv.pem root-slhdsa-shake-128s.der root-slhdsa-shake-128s.pem server-mldsa44-priv.pem server-mldsa44-sha2.der server-mldsa44-sha2.pem server-mldsa44-shake.der server-mldsa44-shake.pemsm2
ca-sm2-key.der ca-sm2-key.pem ca-sm2-priv.der ca-sm2-priv.pem ca-sm2.der ca-sm2.pem client-sm2-key.der client-sm2-key.pem client-sm2-priv.der client-sm2-priv.pem client-sm2.der client-sm2.pem fix_sm2_spki.py gen-sm2-certs.sh gen-sm2-keys.sh include.am root-sm2-key.der root-sm2-key.pem root-sm2-priv.der root-sm2-priv.pem root-sm2.der root-sm2.pem self-sm2-cert.pem self-sm2-key.pem self-sm2-priv.pem server-sm2-cert.der server-sm2-cert.pem server-sm2-key.der server-sm2-key.pem server-sm2-priv.der server-sm2-priv.pem server-sm2.der server-sm2.pemstatickeys
dh-ffdhe2048-params.pem dh-ffdhe2048-pub.der dh-ffdhe2048-pub.pem dh-ffdhe2048.der dh-ffdhe2048.pem ecc-secp256r1.der ecc-secp256r1.pem gen-static.sh include.am x25519-pub.der x25519-pub.pem x25519.der x25519.pemtest
catalog.txt cert-bad-neg-int.der cert-bad-oid.der cert-bad-utf8.der cert-ext-ia.cfg cert-ext-ia.der cert-ext-ia.pem cert-ext-joi.cfg cert-ext-joi.der cert-ext-joi.pem cert-ext-mnc.der cert-ext-multiple.cfg cert-ext-multiple.der cert-ext-multiple.pem cert-ext-nc-combined.der cert-ext-nc-combined.pem cert-ext-nc.cfg cert-ext-nc.der cert-ext-nc.pem cert-ext-ncdns.der cert-ext-ncdns.pem cert-ext-ncip.der cert-ext-ncip.pem cert-ext-ncmixed.der cert-ext-ncmulti.der cert-ext-ncmulti.pem cert-ext-ncrid.der cert-ext-ncrid.pem cert-ext-nct.cfg cert-ext-nct.der cert-ext-nct.pem cert-ext-ndir-exc.cfg cert-ext-ndir-exc.der cert-ext-ndir-exc.pem cert-ext-ndir.cfg cert-ext-ndir.der cert-ext-ndir.pem cert-ext-ns.der cert-over-max-altnames.cfg cert-over-max-altnames.der cert-over-max-altnames.pem cert-over-max-nc.cfg cert-over-max-nc.der cert-over-max-nc.pem client-ecc-cert-ski.hex cn-ip-literal.der cn-ip-wildcard.der crit-cert.pem crit-key.pem dh1024.der dh1024.pem dh512.der dh512.pem digsigku.pem encrypteddata.msg gen-badsig.sh gen-ext-certs.sh gen-testcerts.sh include.am kari-keyid-cms.msg ktri-keyid-cms.msg ossl-trusted-cert.pem server-badaltname.der server-badaltname.pem server-badaltnull.der server-badaltnull.pem server-badcn.der server-badcn.pem server-badcnnull.der server-badcnnull.pem server-cert-ecc-badsig.der server-cert-ecc-badsig.pem server-cert-rsa-badsig.der server-cert-rsa-badsig.pem server-duplicate-policy.pem server-garbage.der server-garbage.pem server-goodalt.der server-goodalt.pem server-goodaltwild.der server-goodaltwild.pem server-goodcn.der server-goodcn.pem server-goodcnwild.der server-goodcnwild.pem server-localhost.der server-localhost.pem smime-test-canon.p7s smime-test-multipart-badsig.p7s smime-test-multipart.p7s smime-test.p7stest-pathlen
assemble-chains.sh chainA-ICA1-key.pem chainA-ICA1-pathlen0.pem chainA-assembled.pem chainA-entity-key.pem chainA-entity.pem chainB-ICA1-key.pem chainB-ICA1-pathlen0.pem chainB-ICA2-key.pem chainB-ICA2-pathlen1.pem chainB-assembled.pem chainB-entity-key.pem chainB-entity.pem chainC-ICA1-key.pem chainC-ICA1-pathlen1.pem chainC-assembled.pem chainC-entity-key.pem chainC-entity.pem chainD-ICA1-key.pem chainD-ICA1-pathlen127.pem chainD-assembled.pem chainD-entity-key.pem chainD-entity.pem chainE-ICA1-key.pem chainE-ICA1-pathlen128.pem chainE-assembled.pem chainE-entity-key.pem chainE-entity.pem chainF-ICA1-key.pem chainF-ICA1-pathlen1.pem chainF-ICA2-key.pem chainF-ICA2-pathlen0.pem chainF-assembled.pem chainF-entity-key.pem chainF-entity.pem chainG-ICA1-key.pem chainG-ICA1-pathlen0.pem chainG-ICA2-key.pem chainG-ICA2-pathlen1.pem chainG-ICA3-key.pem chainG-ICA3-pathlen99.pem chainG-ICA4-key.pem chainG-ICA4-pathlen5.pem chainG-ICA5-key.pem chainG-ICA5-pathlen20.pem chainG-ICA6-key.pem chainG-ICA6-pathlen10.pem chainG-ICA7-key.pem chainG-ICA7-pathlen100.pem chainG-assembled.pem chainG-entity-key.pem chainG-entity.pem chainH-ICA1-key.pem chainH-ICA1-pathlen0.pem chainH-ICA2-key.pem chainH-ICA2-pathlen2.pem chainH-ICA3-key.pem chainH-ICA3-pathlen2.pem chainH-ICA4-key.pem chainH-ICA4-pathlen2.pem chainH-assembled.pem chainH-entity-key.pem chainH-entity.pem chainI-ICA1-key.pem chainI-ICA1-no_pathlen.pem chainI-ICA2-key.pem chainI-ICA2-no_pathlen.pem chainI-ICA3-key.pem chainI-ICA3-pathlen2.pem chainI-assembled.pem chainI-entity-key.pem chainI-entity.pem chainJ-ICA1-key.pem chainJ-ICA1-no_pathlen.pem chainJ-ICA2-key.pem chainJ-ICA2-no_pathlen.pem chainJ-ICA3-key.pem chainJ-ICA3-no_pathlen.pem chainJ-ICA4-key.pem chainJ-ICA4-pathlen2.pem chainJ-assembled.pem chainJ-entity-key.pem chainJ-entity.pem include.am refreshkeys.shtest-serial0
ee_normal.pem ee_serial0.pem generate_certs.sh include.am intermediate_serial0.pem root_serial0.pem root_serial0_key.pem selfsigned_nonca_serial0.pemxmss
bc_xmss_chain_ca.der bc_xmss_chain_leaf.der bc_xmss_sha2_10_256_root.der bc_xmss_sha2_16_256_root.der bc_xmssmt_sha2_20_2_256_root.der bc_xmssmt_sha2_20_4_256_root.der bc_xmssmt_sha2_40_8_256_root.der include.amcmake
Config.cmake.in README.md config.in functions.cmake include.am options.h.in wolfssl-config-version.cmake.in wolfssl-targets.cmake.indebian
changelog.in control.in copyright include.am libwolfssl-dev.install libwolfssl.install rules.indoc
dox_comments
header_files
aes.h arc4.h ascon.h asn.h asn_public.h blake2.h bn.h camellia.h chacha.h chacha20_poly1305.h cmac.h coding.h compress.h cryptocb.h curve25519.h curve448.h des3.h dh.h doxygen_groups.h doxygen_pages.h dsa.h ecc.h eccsi.h ed25519.h ed448.h error-crypt.h evp.h hash.h hmac.h iotsafe.h kdf.h logging.h md2.h md4.h md5.h memory.h ocsp.h pem.h pkcs11.h pkcs7.h poly1305.h psa.h puf.h pwdbased.h quic.h random.h ripemd.h rsa.h sakke.h sha.h sha256.h sha3.h sha512.h signature.h siphash.h srp.h ssl.h tfm.h types.h wc_encrypt.h wc_port.h wc_she.h wc_slhdsa.h wolfio.hheader_files-ja
aes.h arc4.h ascon.h asn.h asn_public.h blake2.h bn.h camellia.h chacha.h chacha20_poly1305.h cmac.h coding.h compress.h cryptocb.h curve25519.h curve448.h des3.h dh.h doxygen_groups.h doxygen_pages.h dsa.h ecc.h eccsi.h ed25519.h ed448.h error-crypt.h evp.h hash.h hmac.h iotsafe.h kdf.h logging.h md2.h md4.h md5.h memory.h ocsp.h pem.h pkcs11.h pkcs7.h poly1305.h psa.h pwdbased.h quic.h random.h ripemd.h rsa.h sakke.h sha.h sha256.h sha3.h sha512.h signature.h siphash.h srp.h ssl.h tfm.h types.h wc_encrypt.h wc_port.h wolfio.h
examples
async
Makefile README.md async_client.c async_server.c async_tls.c async_tls.h include.am user_settings.hconfigs
README.md include.am user_settings_EBSnet.h user_settings_all.h user_settings_arduino.h user_settings_baremetal.h user_settings_ca.h user_settings_curve25519nonblock.h user_settings_dtls13.h user_settings_eccnonblock.h user_settings_espressif.h user_settings_fipsv2.h user_settings_fipsv5.h user_settings_min_ecc.h user_settings_openssl_compat.h user_settings_pkcs7.h user_settings_platformio.h user_settings_pq.h user_settings_rsa_only.h user_settings_stm32.h user_settings_template.h user_settings_tls12.h user_settings_tls13.h user_settings_wolfboot_keytools.h user_settings_wolfssh.h user_settings_wolftpm.hechoclient
echoclient.c echoclient.h echoclient.sln echoclient.vcproj echoclient.vcxproj include.am quitlinuxkm
Kbuild Makefile README.md get_thread_size.c include.am linuxkm-fips-hash-wrapper.sh linuxkm-fips-hash.c linuxkm_memory.c linuxkm_memory.h linuxkm_wc_port.h lkcapi_aes_glue.c lkcapi_dh_glue.c lkcapi_ecdh_glue.c lkcapi_ecdsa_glue.c lkcapi_glue.c lkcapi_rsa_glue.c lkcapi_sha_glue.c module_exports.c.template module_hooks.c pie_redirect_table.c wolfcrypt.lds x86_vector_register_glue.cm4
ax_add_am_macro.m4 ax_am_jobserver.m4 ax_am_macros.m4 ax_append_compile_flags.m4 ax_append_flag.m4 ax_append_link_flags.m4 ax_append_to_file.m4 ax_atomic.m4 ax_bsdkm.m4 ax_check_compile_flag.m4 ax_check_link_flag.m4 ax_compiler_version.m4 ax_count_cpus.m4 ax_create_generic_config.m4 ax_debug.m4 ax_file_escapes.m4 ax_harden_compiler_flags.m4 ax_linuxkm.m4 ax_print_to_file.m4 ax_pthread.m4 ax_require_defined.m4 ax_tls.m4 ax_vcs_checkout.m4 hexversion.m4 lib_socket_nsl.m4 visibility.m4mqx
wolfcrypt_benchmark
ReferencedRSESystems.xml wolfcrypt_benchmark_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchwolfcrypt_test
ReferencedRSESystems.xml wolfcrypt_test_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchwolfssl_client
ReferencedRSESystems.xml wolfssl_client_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchscripts
aria-cmake-build-test.sh asn1_oid_sum.pl benchmark.test benchmark_compare.sh cleanup_testfiles.sh crl-gen-openssl.test crl-revoked.test dertoc.pl dtls.test dtlscid.test external.test google.test include.am makedistsmall.sh memtest.sh ocsp-responder-openssl-interop.test ocsp-stapling-with-ca-as-responder.test ocsp-stapling-with-wolfssl-responder.test ocsp-stapling.test ocsp-stapling2.test ocsp-stapling_tls13multi.test ocsp.test openssl.test openssl_srtp.test pem.test ping.test pkcallbacks.test psk.test resume.test rsapss.test sniffer-gen.sh sniffer-ipv6.pcap sniffer-static-rsa.pcap sniffer-testsuite.test sniffer-tls12-keylog.out sniffer-tls12-keylog.pcap sniffer-tls12-keylog.sslkeylog sniffer-tls13-dh-resume.pcap sniffer-tls13-dh.pcap sniffer-tls13-ecc-resume.pcap sniffer-tls13-ecc.pcap sniffer-tls13-hrr.pcap sniffer-tls13-keylog.out sniffer-tls13-keylog.pcap sniffer-tls13-keylog.sslkeylog sniffer-tls13-x25519-resume.pcap sniffer-tls13-x25519.pcap stm32l4-v4_0_1_build.sh tls13.test trusted_peer.test unit.test.in user_settings_asm.shsrc
bio.c conf.c crl.c dtls.c dtls13.c include.am internal.c keys.c ocsp.c pk.c pk_ec.c pk_rsa.c quic.c sniffer.c ssl.c ssl_api_cert.c ssl_api_crl_ocsp.c ssl_api_pk.c ssl_asn1.c ssl_bn.c ssl_certman.c ssl_crypto.c ssl_ech.c ssl_load.c ssl_misc.c ssl_p7p12.c ssl_sess.c ssl_sk.c tls.c tls13.c wolfio.c x509.c x509_str.ctests
api
api.h api_decl.h create_ocsp_test_blobs.py include.am test_aes.c test_aes.h test_arc4.c test_arc4.h test_ascon.c test_ascon.h test_ascon_kats.h test_asn.c test_asn.h test_blake2.c test_blake2.h test_camellia.c test_camellia.h test_certman.c test_certman.h test_chacha.c test_chacha.h test_chacha20_poly1305.c test_chacha20_poly1305.h test_cmac.c test_cmac.h test_curve25519.c test_curve25519.h test_curve448.c test_curve448.h test_des3.c test_des3.h test_dh.c test_dh.h test_digest.h test_dsa.c test_dsa.h test_dtls.c test_dtls.h test_ecc.c test_ecc.h test_ed25519.c test_ed25519.h test_ed448.c test_ed448.h test_evp.c test_evp.h test_evp_cipher.c test_evp_cipher.h test_evp_digest.c test_evp_digest.h test_evp_pkey.c test_evp_pkey.h test_hash.c test_hash.h test_hmac.c test_hmac.h test_md2.c test_md2.h test_md4.c test_md4.h test_md5.c test_md5.h test_mldsa.c test_mldsa.h test_mlkem.c test_mlkem.h test_ocsp.c test_ocsp.h test_ocsp_test_blobs.h test_ossl_asn1.c test_ossl_asn1.h test_ossl_bio.c test_ossl_bio.h test_ossl_bn.c test_ossl_bn.h test_ossl_cipher.c test_ossl_cipher.h test_ossl_dgst.c test_ossl_dgst.h test_ossl_dh.c test_ossl_dh.h test_ossl_dsa.c test_ossl_dsa.h test_ossl_ec.c test_ossl_ec.h test_ossl_ecx.c test_ossl_ecx.h test_ossl_mac.c test_ossl_mac.h test_ossl_obj.c test_ossl_obj.h test_ossl_p7p12.c test_ossl_p7p12.h test_ossl_pem.c test_ossl_pem.h test_ossl_rand.c test_ossl_rand.h test_ossl_rsa.c test_ossl_rsa.h test_ossl_sk.c test_ossl_sk.h test_ossl_x509.c test_ossl_x509.h test_ossl_x509_acert.c test_ossl_x509_acert.h test_ossl_x509_crypto.c test_ossl_x509_crypto.h test_ossl_x509_ext.c test_ossl_x509_ext.h test_ossl_x509_info.c test_ossl_x509_info.h test_ossl_x509_io.c test_ossl_x509_io.h test_ossl_x509_lu.c test_ossl_x509_lu.h test_ossl_x509_name.c test_ossl_x509_name.h test_ossl_x509_pk.c test_ossl_x509_pk.h test_ossl_x509_str.c test_ossl_x509_str.h test_ossl_x509_vp.c test_ossl_x509_vp.h test_pkcs12.c test_pkcs12.h test_pkcs7.c test_pkcs7.h test_poly1305.c test_poly1305.h test_random.c test_random.h test_rc2.c test_rc2.h test_ripemd.c test_ripemd.h test_rsa.c test_rsa.h test_sha.c test_sha.h test_sha256.c test_sha256.h test_sha3.c test_sha3.h test_sha512.c test_sha512.h test_she.c test_she.h test_signature.c test_signature.h test_slhdsa.c test_slhdsa.h test_sm2.c test_sm2.h test_sm3.c test_sm3.h test_sm4.c test_sm4.h test_tls.c test_tls.h test_tls13.c test_tls13.h test_tls_ext.c test_tls_ext.h test_wc_encrypt.c test_wc_encrypt.h test_wolfmath.c test_wolfmath.h test_x509.c test_x509.hwolfcrypt
benchmark
README.md benchmark-VS2022.sln benchmark-VS2022.vcxproj benchmark-VS2022.vcxproj.user benchmark.c benchmark.h benchmark.sln benchmark.vcproj benchmark.vcxproj include.amsrc
port
Espressif
esp_crt_bundle
README.md cacrt_all.pem cacrt_deprecated.pem cacrt_local.pem esp_crt_bundle.c gen_crt_bundle.py pio_install_cryptography.pyRenesas
README.md renesas_common.c renesas_fspsm_aes.c renesas_fspsm_rsa.c renesas_fspsm_sha.c renesas_fspsm_util.c renesas_rx64_hw_sha.c renesas_rx64_hw_util.c renesas_tsip_aes.c renesas_tsip_rsa.c renesas_tsip_sha.c renesas_tsip_util.carm
armv8-32-aes-asm.S armv8-32-aes-asm_c.c armv8-32-chacha-asm.S armv8-32-chacha-asm_c.c armv8-32-curve25519.S armv8-32-curve25519_c.c armv8-32-mlkem-asm.S armv8-32-mlkem-asm_c.c armv8-32-poly1305-asm.S armv8-32-poly1305-asm_c.c armv8-32-sha256-asm.S armv8-32-sha256-asm_c.c armv8-32-sha3-asm.S armv8-32-sha3-asm_c.c armv8-32-sha512-asm.S armv8-32-sha512-asm_c.c armv8-aes-asm.S armv8-aes-asm_c.c armv8-aes.c armv8-chacha-asm.S armv8-chacha-asm_c.c armv8-curve25519.S armv8-curve25519_c.c armv8-mlkem-asm.S armv8-mlkem-asm_c.c armv8-poly1305-asm.S armv8-poly1305-asm_c.c armv8-sha256-asm.S armv8-sha256-asm_c.c armv8-sha256.c armv8-sha3-asm.S armv8-sha3-asm_c.c armv8-sha512-asm.S armv8-sha512-asm_c.c armv8-sha512.c cryptoCell.c cryptoCellHash.c thumb2-aes-asm.S thumb2-aes-asm_c.c thumb2-chacha-asm.S thumb2-chacha-asm_c.c thumb2-curve25519.S thumb2-curve25519_c.c thumb2-mlkem-asm.S thumb2-mlkem-asm_c.c thumb2-poly1305-asm.S thumb2-poly1305-asm_c.c thumb2-sha256-asm.S thumb2-sha256-asm_c.c thumb2-sha3-asm.S thumb2-sha3-asm_c.c thumb2-sha512-asm.S thumb2-sha512-asm_c.ccaam
README.md caam_aes.c caam_doc.pdf caam_driver.c caam_error.c caam_integrity.c caam_qnx.c caam_sha.c wolfcaam_aes.c wolfcaam_cmac.c wolfcaam_ecdsa.c wolfcaam_fsl_nxp.c wolfcaam_hash.c wolfcaam_hmac.c wolfcaam_init.c wolfcaam_qnx.c wolfcaam_rsa.c wolfcaam_seco.c wolfcaam_x25519.cdevcrypto
README.md devcrypto_aes.c devcrypto_ecdsa.c devcrypto_hash.c devcrypto_hmac.c devcrypto_rsa.c devcrypto_x25519.c wc_devcrypto.criscv
riscv-64-aes.c riscv-64-chacha.c riscv-64-poly1305.c riscv-64-sha256.c riscv-64-sha3.c riscv-64-sha512.cwolfssl
openssl
aes.h asn1.h asn1t.h bio.h bn.h buffer.h camellia.h cmac.h cms.h compat_types.h conf.h crypto.h des.h dh.h dsa.h ec.h ec25519.h ec448.h ecdh.h ecdsa.h ed25519.h ed448.h engine.h err.h evp.h fips_rand.h hmac.h include.am kdf.h lhash.h md4.h md5.h modes.h obj_mac.h objects.h ocsp.h opensslconf.h opensslv.h ossl_typ.h pem.h pkcs12.h pkcs7.h rand.h rc4.h ripemd.h rsa.h safestack.h sha.h sha3.h srp.h ssl.h ssl23.h stack.h tls1.h txt_db.h ui.h x509.h x509_vfy.h x509v3.hwolfcrypt
port
Renesas
renesas-fspsm-crypt.h renesas-fspsm-types.h renesas-rx64-hw-crypt.h renesas-tsip-crypt.h renesas_cmn.h renesas_fspsm_internal.h renesas_sync.h renesas_tsip_internal.h renesas_tsip_types.hcaam
caam_driver.h caam_error.h caam_qnx.h wolfcaam.h wolfcaam_aes.h wolfcaam_cmac.h wolfcaam_ecdsa.h wolfcaam_fsl_nxp.h wolfcaam_hash.h wolfcaam_qnx.h wolfcaam_rsa.h wolfcaam_seco.h wolfcaam_sha.h wolfcaam_x25519.hwrapper
Ada
examples
src
aes_verify_main.adb rsa_verify_main.adb sha256_main.adb spark_sockets.adb spark_sockets.ads spark_terminal.adb spark_terminal.ads tls_client.adb tls_client.ads tls_client_main.adb tls_server.adb tls_server.ads tls_server_main.adbtests
src
aes_bindings_tests.adb aes_bindings_tests.ads rsa_verify_bindings_tests.adb rsa_verify_bindings_tests.ads sha256_bindings_tests.adb sha256_bindings_tests.ads tests.adbCSharp
wolfSSL-Example-IOCallbacks
App.config wolfSSL-Example-IOCallbacks.cs wolfSSL-Example-IOCallbacks.csprojwolfSSL-TLS-ServerThreaded
App.config wolfSSL-TLS-ServerThreaded.cs wolfSSL-TLS-ServerThreaded.csprojrust
wolfssl-wolfcrypt
src
aes.rs blake2.rs chacha20_poly1305.rs cmac.rs cmac_mac.rs curve25519.rs dh.rs dilithium.rs ecc.rs ecdsa.rs ed25519.rs ed448.rs fips.rs hkdf.rs hmac.rs hmac_mac.rs kdf.rs lib.rs lms.rs mlkem.rs mlkem_kem.rs pbkdf2_password_hash.rs prf.rs random.rs rsa.rs rsa_pkcs1v15.rs sha.rs sha_digest.rs sys.rstests
test_aes.rs test_blake2.rs test_chacha20_poly1305.rs test_cmac.rs test_cmac_mac.rs test_curve25519.rs test_dh.rs test_dilithium.rs test_ecc.rs test_ecdsa.rs test_ed25519.rs test_ed448.rs test_hkdf.rs test_hmac.rs test_hmac_mac.rs test_kdf.rs test_lms.rs test_mlkem.rs test_mlkem_kem.rs test_pbkdf2_password_hash.rs test_prf.rs test_random.rs test_rsa.rs test_rsa_pkcs1v15.rs test_sha.rs test_sha_digest.rs test_wolfcrypt.rszephyr
samples
wolfssl_benchmark
CMakeLists.txt README install_test.sh prj.conf sample.yaml zephyr_legacy.conf zephyr_v4.1.confwolfssl_test
CMakeLists.txt README install_test.sh prj-no-malloc.conf prj.conf sample.yaml zephyr_legacy.conf zephyr_v4.1.conf
wolfssl/tests/api/test_evp_pkey.c
raw
1/* test_evp_pkey.c
2 *
3 * Copyright (C) 2006-2026 wolfSSL Inc.
4 *
5 * This file is part of wolfSSL.
6 *
7 * wolfSSL is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 3 of the License, or
10 * (at your option) any later version.
11 *
12 * wolfSSL is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
20 */
21
22#include <tests/unit.h>
23
24#ifdef NO_INLINE
25 #include <wolfssl/wolfcrypt/misc.h>
26#else
27 #define WOLFSSL_MISC_INCLUDED
28 #include <wolfcrypt/src/misc.c>
29#endif
30
31#include <wolfssl/openssl/evp.h>
32#include <wolfssl/openssl/kdf.h>
33#include <tests/api/api.h>
34#include <tests/api/test_evp_pkey.h>
35
36
37int test_wolfSSL_EVP_PKEY_CTX_new_id(void)
38{
39 EXPECT_DECLS;
40#ifdef OPENSSL_ALL
41 WOLFSSL_ENGINE* e = NULL;
42 int id = 0;
43 EVP_PKEY_CTX *ctx = NULL;
44
45 ExpectNotNull(ctx = wolfSSL_EVP_PKEY_CTX_new_id(id, e));
46
47 EVP_PKEY_CTX_free(ctx);
48#endif
49 return EXPECT_RESULT();
50}
51
52int test_wolfSSL_EVP_PKEY_CTX_set_rsa_keygen_bits(void)
53{
54 EXPECT_DECLS;
55#ifdef OPENSSL_ALL
56 WOLFSSL_EVP_PKEY* pkey = NULL;
57 EVP_PKEY_CTX* ctx = NULL;
58 int bits = 2048;
59
60 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
61 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
62
63 ExpectIntEQ(wolfSSL_EVP_PKEY_CTX_set_rsa_keygen_bits(ctx, bits),
64 WOLFSSL_SUCCESS);
65
66 EVP_PKEY_CTX_free(ctx);
67 EVP_PKEY_free(pkey);
68#endif
69 return EXPECT_RESULT();
70}
71
72int test_wolfSSL_QT_EVP_PKEY_CTX_free(void)
73{
74 EXPECT_DECLS;
75#if defined(OPENSSL_EXTRA) && defined(OPENSSL_ALL)
76 EVP_PKEY* pkey = NULL;
77 EVP_PKEY_CTX* ctx = NULL;
78
79 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
80 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
81
82#if defined(OPENSSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER >= 0x10100000L
83 /* void */
84 EVP_PKEY_CTX_free(ctx);
85#else
86 /* int */
87 ExpectIntEQ(EVP_PKEY_CTX_free(ctx), WOLFSSL_SUCCESS);
88#endif
89
90 EVP_PKEY_free(pkey);
91#endif
92 return EXPECT_RESULT();
93}
94
95int test_wolfSSL_EVP_PKEY_up_ref(void)
96{
97 EXPECT_DECLS;
98#if defined(OPENSSL_ALL)
99 EVP_PKEY* pkey;
100
101 pkey = EVP_PKEY_new();
102 ExpectNotNull(pkey);
103 ExpectIntEQ(EVP_PKEY_up_ref(NULL), 0);
104 ExpectIntEQ(EVP_PKEY_up_ref(pkey), 1);
105 EVP_PKEY_free(pkey);
106 ExpectIntEQ(EVP_PKEY_up_ref(pkey), 1);
107 EVP_PKEY_free(pkey);
108 EVP_PKEY_free(pkey);
109#endif
110 return EXPECT_RESULT();
111}
112
113int test_wolfSSL_EVP_PKEY_base_id(void)
114{
115 EXPECT_DECLS;
116#ifdef OPENSSL_ALL
117 WOLFSSL_EVP_PKEY* pkey = NULL;
118
119 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
120
121 ExpectIntEQ(wolfSSL_EVP_PKEY_base_id(NULL), NID_undef);
122
123 ExpectIntEQ(wolfSSL_EVP_PKEY_base_id(pkey), EVP_PKEY_RSA);
124
125 EVP_PKEY_free(pkey);
126#endif
127 return EXPECT_RESULT();
128}
129int test_wolfSSL_EVP_PKEY_id(void)
130{
131 EXPECT_DECLS;
132#ifdef OPENSSL_ALL
133 WOLFSSL_EVP_PKEY* pkey = NULL;
134
135 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
136
137 ExpectIntEQ(wolfSSL_EVP_PKEY_id(NULL), 0);
138
139 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_RSA);
140
141 EVP_PKEY_free(pkey);
142#endif
143 return EXPECT_RESULT();
144}
145
146int test_wolfSSL_EVP_MD_pkey_type(void)
147{
148 EXPECT_DECLS;
149#ifdef OPENSSL_EXTRA
150 const WOLFSSL_EVP_MD* md;
151
152#ifndef NO_MD5
153 ExpectNotNull(md = EVP_md5());
154 ExpectIntEQ(EVP_MD_pkey_type(md), NID_md5WithRSAEncryption);
155#endif
156#ifndef NO_SHA
157 ExpectNotNull(md = EVP_sha1());
158 ExpectIntEQ(EVP_MD_pkey_type(md), NID_sha1WithRSAEncryption);
159#endif
160#ifdef WOLFSSL_SHA224
161 ExpectNotNull(md = EVP_sha224());
162 ExpectIntEQ(EVP_MD_pkey_type(md), NID_sha224WithRSAEncryption);
163#endif
164 ExpectNotNull(md = EVP_sha256());
165 ExpectIntEQ(EVP_MD_pkey_type(md), NID_sha256WithRSAEncryption);
166#ifdef WOLFSSL_SHA384
167 ExpectNotNull(md = EVP_sha384());
168 ExpectIntEQ(EVP_MD_pkey_type(md), NID_sha384WithRSAEncryption);
169#endif
170#ifdef WOLFSSL_SHA512
171 ExpectNotNull(md = EVP_sha512());
172 ExpectIntEQ(EVP_MD_pkey_type(md), NID_sha512WithRSAEncryption);
173#endif
174#endif
175 return EXPECT_RESULT();
176}
177
178#ifdef OPENSSL_EXTRA
179static int test_hmac_signing(const WOLFSSL_EVP_MD *type, const byte* testKey,
180 size_t testKeySz, const char* testData, size_t testDataSz,
181 const byte* testResult, size_t testResultSz)
182{
183 EXPECT_DECLS;
184 unsigned char check[WC_MAX_DIGEST_SIZE];
185 size_t checkSz = 0;
186 WOLFSSL_EVP_PKEY* key = NULL;
187 WOLFSSL_EVP_MD_CTX mdCtx;
188
189 ExpectNotNull(key = wolfSSL_EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
190 testKey, (int)testKeySz));
191 wolfSSL_EVP_MD_CTX_init(&mdCtx);
192 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, type, NULL, key), 1);
193 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData,
194 (unsigned int)testDataSz), 1);
195 checkSz = sizeof(check);
196 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
197 ExpectIntEQ((int)checkSz, (int)testResultSz);
198 checkSz = sizeof(check);
199 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
200 ExpectIntEQ((int)checkSz,(int)testResultSz);
201 ExpectIntEQ(XMEMCMP(testResult, check, testResultSz), 0);
202 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
203
204 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, type, NULL, key), 1);
205 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData,
206 (unsigned int)testDataSz), 1);
207 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, testResult, checkSz), 1);
208
209 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
210 wolfSSL_EVP_MD_CTX_init(&mdCtx);
211 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, type, NULL, key), 1);
212 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData, 4), 1);
213 checkSz = sizeof(check);
214 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
215 ExpectIntEQ((int)checkSz, (int)testResultSz);
216 checkSz = sizeof(check);
217 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
218 ExpectIntEQ((int)checkSz,(int)testResultSz);
219 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData + 4,
220 (unsigned int)testDataSz - 4), 1);
221 checkSz = sizeof(check);
222 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
223 ExpectIntEQ((int)checkSz,(int)testResultSz);
224 ExpectIntEQ(XMEMCMP(testResult, check, testResultSz), 0);
225
226 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
227 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, type, NULL, key), 1);
228 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData, 4), 1);
229 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData + 4,
230 (unsigned int)testDataSz - 4), 1);
231 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, testResult, checkSz), 1);
232
233 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
234
235 wolfSSL_EVP_PKEY_free(key);
236
237 return EXPECT_RESULT();
238}
239#endif
240
241int test_wolfSSL_EVP_MD_hmac_signing(void)
242{
243 EXPECT_DECLS;
244#ifdef OPENSSL_EXTRA
245 static const unsigned char testKey[] =
246 {
247 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
248 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
249 0x0b, 0x0b, 0x0b, 0x0b
250 };
251 static const char testData[] = "Hi There";
252#ifdef WOLFSSL_SHA224
253 static const unsigned char testResultSha224[] =
254 {
255 0x89, 0x6f, 0xb1, 0x12, 0x8a, 0xbb, 0xdf, 0x19,
256 0x68, 0x32, 0x10, 0x7c, 0xd4, 0x9d, 0xf3, 0x3f,
257 0x47, 0xb4, 0xb1, 0x16, 0x99, 0x12, 0xba, 0x4f,
258 0x53, 0x68, 0x4b, 0x22
259 };
260#endif
261#ifndef NO_SHA256
262 static const unsigned char testResultSha256[] =
263 {
264 0xb0, 0x34, 0x4c, 0x61, 0xd8, 0xdb, 0x38, 0x53,
265 0x5c, 0xa8, 0xaf, 0xce, 0xaf, 0x0b, 0xf1, 0x2b,
266 0x88, 0x1d, 0xc2, 0x00, 0xc9, 0x83, 0x3d, 0xa7,
267 0x26, 0xe9, 0x37, 0x6c, 0x2e, 0x32, 0xcf, 0xf7
268 };
269#endif
270#ifdef WOLFSSL_SHA384
271 static const unsigned char testResultSha384[] =
272 {
273 0xaf, 0xd0, 0x39, 0x44, 0xd8, 0x48, 0x95, 0x62,
274 0x6b, 0x08, 0x25, 0xf4, 0xab, 0x46, 0x90, 0x7f,
275 0x15, 0xf9, 0xda, 0xdb, 0xe4, 0x10, 0x1e, 0xc6,
276 0x82, 0xaa, 0x03, 0x4c, 0x7c, 0xeb, 0xc5, 0x9c,
277 0xfa, 0xea, 0x9e, 0xa9, 0x07, 0x6e, 0xde, 0x7f,
278 0x4a, 0xf1, 0x52, 0xe8, 0xb2, 0xfa, 0x9c, 0xb6
279 };
280#endif
281#ifdef WOLFSSL_SHA512
282 static const unsigned char testResultSha512[] =
283 {
284 0x87, 0xaa, 0x7c, 0xde, 0xa5, 0xef, 0x61, 0x9d,
285 0x4f, 0xf0, 0xb4, 0x24, 0x1a, 0x1d, 0x6c, 0xb0,
286 0x23, 0x79, 0xf4, 0xe2, 0xce, 0x4e, 0xc2, 0x78,
287 0x7a, 0xd0, 0xb3, 0x05, 0x45, 0xe1, 0x7c, 0xde,
288 0xda, 0xa8, 0x33, 0xb7, 0xd6, 0xb8, 0xa7, 0x02,
289 0x03, 0x8b, 0x27, 0x4e, 0xae, 0xa3, 0xf4, 0xe4,
290 0xbe, 0x9d, 0x91, 0x4e, 0xeb, 0x61, 0xf1, 0x70,
291 0x2e, 0x69, 0x6c, 0x20, 0x3a, 0x12, 0x68, 0x54
292 };
293#endif
294#ifdef WOLFSSL_SHA3
295 #ifndef WOLFSSL_NOSHA3_224
296 static const unsigned char testResultSha3_224[] =
297 {
298 0x3b, 0x16, 0x54, 0x6b, 0xbc, 0x7b, 0xe2, 0x70,
299 0x6a, 0x03, 0x1d, 0xca, 0xfd, 0x56, 0x37, 0x3d,
300 0x98, 0x84, 0x36, 0x76, 0x41, 0xd8, 0xc5, 0x9a,
301 0xf3, 0xc8, 0x60, 0xf7
302 };
303 #endif
304 #ifndef WOLFSSL_NOSHA3_256
305 static const unsigned char testResultSha3_256[] =
306 {
307 0xba, 0x85, 0x19, 0x23, 0x10, 0xdf, 0xfa, 0x96,
308 0xe2, 0xa3, 0xa4, 0x0e, 0x69, 0x77, 0x43, 0x51,
309 0x14, 0x0b, 0xb7, 0x18, 0x5e, 0x12, 0x02, 0xcd,
310 0xcc, 0x91, 0x75, 0x89, 0xf9, 0x5e, 0x16, 0xbb
311 };
312 #endif
313 #ifndef WOLFSSL_NOSHA3_384
314 static const unsigned char testResultSha3_384[] =
315 {
316 0x68, 0xd2, 0xdc, 0xf7, 0xfd, 0x4d, 0xdd, 0x0a,
317 0x22, 0x40, 0xc8, 0xa4, 0x37, 0x30, 0x5f, 0x61,
318 0xfb, 0x73, 0x34, 0xcf, 0xb5, 0xd0, 0x22, 0x6e,
319 0x1b, 0xc2, 0x7d, 0xc1, 0x0a, 0x2e, 0x72, 0x3a,
320 0x20, 0xd3, 0x70, 0xb4, 0x77, 0x43, 0x13, 0x0e,
321 0x26, 0xac, 0x7e, 0x3d, 0x53, 0x28, 0x86, 0xbd
322 };
323 #endif
324 #ifndef WOLFSSL_NOSHA3_512
325 static const unsigned char testResultSha3_512[] =
326 {
327 0xeb, 0x3f, 0xbd, 0x4b, 0x2e, 0xaa, 0xb8, 0xf5,
328 0xc5, 0x04, 0xbd, 0x3a, 0x41, 0x46, 0x5a, 0xac,
329 0xec, 0x15, 0x77, 0x0a, 0x7c, 0xab, 0xac, 0x53,
330 0x1e, 0x48, 0x2f, 0x86, 0x0b, 0x5e, 0xc7, 0xba,
331 0x47, 0xcc, 0xb2, 0xc6, 0xf2, 0xaf, 0xce, 0x8f,
332 0x88, 0xd2, 0x2b, 0x6d, 0xc6, 0x13, 0x80, 0xf2,
333 0x3a, 0x66, 0x8f, 0xd3, 0x88, 0x8b, 0xb8, 0x05,
334 0x37, 0xc0, 0xa0, 0xb8, 0x64, 0x07, 0x68, 0x9e
335 };
336 #endif
337#endif
338
339#ifndef NO_SHA256
340 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha256(), testKey,
341 sizeof(testKey), testData, XSTRLEN(testData), testResultSha256,
342 sizeof(testResultSha256)), TEST_SUCCESS);
343#endif
344#ifdef WOLFSSL_SHA224
345 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha224(), testKey,
346 sizeof(testKey), testData, XSTRLEN(testData), testResultSha224,
347 sizeof(testResultSha224)), TEST_SUCCESS);
348#endif
349#ifdef WOLFSSL_SHA384
350 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha384(), testKey,
351 sizeof(testKey), testData, XSTRLEN(testData), testResultSha384,
352 sizeof(testResultSha384)), TEST_SUCCESS);
353#endif
354#ifdef WOLFSSL_SHA512
355 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha512(), testKey,
356 sizeof(testKey), testData, XSTRLEN(testData), testResultSha512,
357 sizeof(testResultSha512)), TEST_SUCCESS);
358#endif
359#ifdef WOLFSSL_SHA3
360 #ifndef WOLFSSL_NOSHA3_224
361 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha3_224(), testKey,
362 sizeof(testKey), testData, XSTRLEN(testData), testResultSha3_224,
363 sizeof(testResultSha3_224)), TEST_SUCCESS);
364 #endif
365 #ifndef WOLFSSL_NOSHA3_256
366 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha3_256(), testKey,
367 sizeof(testKey), testData, XSTRLEN(testData), testResultSha3_256,
368 sizeof(testResultSha3_256)), TEST_SUCCESS);
369 #endif
370 #ifndef WOLFSSL_NOSHA3_384
371 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha3_384(), testKey,
372 sizeof(testKey), testData, XSTRLEN(testData), testResultSha3_384,
373 sizeof(testResultSha3_384)), TEST_SUCCESS);
374 #endif
375 #ifndef WOLFSSL_NOSHA3_512
376 ExpectIntEQ(test_hmac_signing(wolfSSL_EVP_sha3_512(), testKey,
377 sizeof(testKey), testData, XSTRLEN(testData), testResultSha3_512,
378 sizeof(testResultSha3_512)), TEST_SUCCESS);
379 #endif
380#endif
381#endif /* OPENSSL_EXTRA */
382 return EXPECT_RESULT();
383}
384
385/* Verify that EVP_DigestVerifyFinal rejects zero-length HMAC tags. */
386int test_wolfSSL_EVP_DigestVerify_HMAC_zero_len_forgery(void)
387{
388 EXPECT_DECLS;
389#if defined(OPENSSL_EXTRA) && !defined(NO_HMAC) && !defined(NO_SHA256)
390 static const unsigned char key[] = {
391 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
392 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
393 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
394 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b
395 };
396 static const char message[] = "wolfSSL DigestVerifyFinal forgery probe";
397 static const unsigned char zeros[WC_MAX_DIGEST_SIZE] = { 0 };
398
399 WOLFSSL_EVP_PKEY* pkey = NULL;
400 WOLFSSL_EVP_MD_CTX mdCtx;
401 unsigned char tag[WC_MAX_DIGEST_SIZE];
402 size_t tagLen = sizeof(tag);
403
404 wolfSSL_EVP_MD_CTX_init(&mdCtx);
405
406 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
407 key, (int)sizeof(key)));
408
409 /* Compute the genuine HMAC-SHA256 tag for the message. */
410 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
411 NULL, pkey), 1);
412 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, message,
413 (unsigned int)XSTRLEN(message)),
414 1);
415 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, tag, &tagLen), 1);
416 ExpectIntEQ((int)tagLen, WC_SHA256_DIGEST_SIZE);
417 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
418
419 /* Full-length genuine tag verifies. */
420 wolfSSL_EVP_MD_CTX_init(&mdCtx);
421 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
422 NULL, pkey), 1);
423 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, message,
424 (unsigned int)XSTRLEN(message)),
425 1);
426 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, tag, tagLen), 1);
427 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
428
429 /* Wrong full-length tag is rejected. */
430 wolfSSL_EVP_MD_CTX_init(&mdCtx);
431 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
432 NULL, pkey), 1);
433 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, message,
434 (unsigned int)XSTRLEN(message)),
435 1);
436 ExpectIntNE(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, zeros,
437 WC_SHA256_DIGEST_SIZE), 1);
438 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
439
440 /* Zero-length tag must be rejected. */
441 wolfSSL_EVP_MD_CTX_init(&mdCtx);
442 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
443 NULL, pkey), 1);
444 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, message,
445 (unsigned int)XSTRLEN(message)),
446 1);
447 ExpectIntNE(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, zeros, 0), 1);
448 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
449
450 wolfSSL_EVP_PKEY_free(pkey);
451#endif
452 return EXPECT_RESULT();
453}
454
455int test_wolfSSL_EVP_PKEY_new_mac_key(void)
456{
457 EXPECT_DECLS;
458#ifdef OPENSSL_EXTRA
459 static const unsigned char pw[] = "password";
460 static const int pwSz = sizeof(pw) - 1;
461 size_t checkPwSz = 0;
462 const unsigned char* checkPw = NULL;
463 WOLFSSL_EVP_PKEY* key = NULL;
464
465 ExpectNull(key = wolfSSL_EVP_PKEY_new_mac_key(0, NULL, pw, pwSz));
466 ExpectNull(key = wolfSSL_EVP_PKEY_new_mac_key(0, NULL, NULL, pwSz));
467
468 ExpectNotNull(key = wolfSSL_EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, pw,
469 pwSz));
470 if (key != NULL) {
471 ExpectIntEQ(key->type, EVP_PKEY_HMAC);
472 ExpectIntEQ(key->save_type, EVP_PKEY_HMAC);
473 ExpectIntEQ(key->pkey_sz, pwSz);
474 ExpectIntEQ(XMEMCMP(key->pkey.ptr, pw, pwSz), 0);
475 }
476 ExpectNotNull(checkPw = wolfSSL_EVP_PKEY_get0_hmac(key, &checkPwSz));
477 ExpectIntEQ((int)checkPwSz, pwSz);
478 ExpectIntEQ(XMEMCMP(checkPw, pw, pwSz), 0);
479 wolfSSL_EVP_PKEY_free(key);
480 key = NULL;
481
482 ExpectNotNull(key = wolfSSL_EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, pw,
483 0));
484 ExpectIntEQ(key->pkey_sz, 0);
485 if (EXPECT_SUCCESS()) {
486 /* Allocation for key->pkey.ptr may fail - OK key len is 0 */
487 checkPw = wolfSSL_EVP_PKEY_get0_hmac(key, &checkPwSz);
488 }
489 ExpectTrue((checkPwSz == 0) || (checkPw != NULL));
490 ExpectIntEQ((int)checkPwSz, 0);
491 wolfSSL_EVP_PKEY_free(key);
492 key = NULL;
493
494 ExpectNotNull(key = wolfSSL_EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, NULL,
495 0));
496 ExpectIntEQ(key->pkey_sz, 0);
497 if (EXPECT_SUCCESS()) {
498 /* Allocation for key->pkey.ptr may fail - OK key len is 0 */
499 checkPw = wolfSSL_EVP_PKEY_get0_hmac(key, &checkPwSz);
500 }
501 ExpectTrue((checkPwSz == 0) || (checkPw != NULL));
502 ExpectIntEQ((int)checkPwSz, 0);
503 wolfSSL_EVP_PKEY_free(key);
504 key = NULL;
505#endif /* OPENSSL_EXTRA */
506 return EXPECT_RESULT();
507}
508
509int test_wolfSSL_EVP_PKEY_hkdf(void)
510{
511 EXPECT_DECLS;
512#if defined(OPENSSL_EXTRA) && defined(HAVE_HKDF)
513 EVP_PKEY_CTX* ctx = NULL;
514 byte salt[] = {0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
515 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F};
516 byte key[] = {0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
517 0x18, 0x19, 0x1A, 0x1B, 0x1C, 0x1D, 0x1E, 0x1F};
518 byte info[] = {0X01, 0x02, 0x03, 0x04, 0x05};
519 byte info2[] = {0X06, 0x07, 0x08, 0x09, 0x0A};
520 byte outKey[34];
521 size_t outKeySz = sizeof(outKey);
522 /* These expected outputs were gathered by running the same test below using
523 * OpenSSL. */
524 const byte extractAndExpand[] = {
525 0x8B, 0xEB, 0x90, 0xA9, 0x04, 0xFF, 0x05, 0x10, 0xE4, 0xB5, 0xB1, 0x10,
526 0x31, 0x34, 0xFF, 0x07, 0x5B, 0xE3, 0xC6, 0x93, 0xD4, 0xF8, 0xC7, 0xEE,
527 0x96, 0xDA, 0x78, 0x7A, 0xE2, 0x9A, 0x2D, 0x05, 0x4B, 0xF6
528 };
529 const byte extractOnly[] = {
530 0xE7, 0x6B, 0x9E, 0x0F, 0xE4, 0x02, 0x1D, 0x62, 0xEA, 0x97, 0x74, 0x5E,
531 0xF4, 0x3C, 0x65, 0x4D, 0xC1, 0x46, 0x98, 0xAA, 0x79, 0x9A, 0xCB, 0x9C,
532 0xCC, 0x3E, 0x7F, 0x2A, 0x2B, 0x41, 0xA1, 0x9E
533 };
534 const byte expandOnly[] = {
535 0xFF, 0x29, 0x29, 0x56, 0x9E, 0xA7, 0x66, 0x02, 0xDB, 0x4F, 0xDB, 0x53,
536 0x7D, 0x21, 0x67, 0x52, 0xC3, 0x0E, 0xF3, 0xFC, 0x71, 0xCE, 0x67, 0x2B,
537 0xEA, 0x3B, 0xE9, 0xFC, 0xDD, 0xC8, 0xCC, 0xB7, 0x42, 0x74
538 };
539 const byte extractAndExpandAddInfo[] = {
540 0x5A, 0x74, 0x79, 0x83, 0xA3, 0xA4, 0x2E, 0xB7, 0xD4, 0x08, 0xC2, 0x6A,
541 0x2F, 0xA5, 0xE3, 0x4E, 0xF1, 0xF4, 0x87, 0x3E, 0xA6, 0xC7, 0x88, 0x45,
542 0xD7, 0xE2, 0x15, 0xBC, 0xB8, 0x10, 0xEF, 0x6C, 0x4D, 0x7A
543 };
544
545 ExpectNotNull((ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_HKDF, NULL)));
546 ExpectIntEQ(EVP_PKEY_derive_init(ctx), WOLFSSL_SUCCESS);
547 /* NULL ctx. */
548 ExpectIntEQ(EVP_PKEY_CTX_set_hkdf_md(NULL, EVP_sha256()),
549 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
550 /* NULL md. */
551 ExpectIntEQ(EVP_PKEY_CTX_set_hkdf_md(ctx, NULL),
552 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
553 ExpectIntEQ(EVP_PKEY_CTX_set_hkdf_md(ctx, EVP_sha256()), WOLFSSL_SUCCESS);
554 /* NULL ctx. */
555 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_salt(NULL, salt, sizeof(salt)),
556 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
557 /* NULL salt is ok. */
558 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_salt(ctx, NULL, sizeof(salt)),
559 WOLFSSL_SUCCESS);
560 /* Salt length <= 0. */
561 /* Length 0 salt is ok. */
562 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_salt(ctx, salt, 0), WOLFSSL_SUCCESS);
563 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_salt(ctx, salt, -1),
564 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
565 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_salt(ctx, salt, sizeof(salt)),
566 WOLFSSL_SUCCESS);
567 /* NULL ctx. */
568 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_key(NULL, key, sizeof(key)),
569 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
570 /* NULL key. */
571 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_key(ctx, NULL, sizeof(key)),
572 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
573 /* Key length <= 0 */
574 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_key(ctx, key, 0),
575 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
576 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_key(ctx, key, -1),
577 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
578 ExpectIntEQ(EVP_PKEY_CTX_set1_hkdf_key(ctx, key, sizeof(key)),
579 WOLFSSL_SUCCESS);
580 /* NULL ctx. */
581 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(NULL, info, sizeof(info)),
582 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
583 /* NULL info is ok. */
584 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(ctx, NULL, sizeof(info)),
585 WOLFSSL_SUCCESS);
586 /* Info length <= 0 */
587 /* Length 0 info is ok. */
588 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(ctx, info, 0), WOLFSSL_SUCCESS);
589 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(ctx, info, -1),
590 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
591 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(ctx, info, sizeof(info)),
592 WOLFSSL_SUCCESS);
593 /* NULL ctx. */
594 ExpectIntEQ(EVP_PKEY_CTX_hkdf_mode(NULL, EVP_PKEY_HKDEF_MODE_EXTRACT_ONLY),
595 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
596 /* Extract and expand (default). */
597 ExpectIntEQ(EVP_PKEY_derive(ctx, outKey, &outKeySz), WOLFSSL_SUCCESS);
598 ExpectIntEQ(outKeySz, sizeof(extractAndExpand));
599 ExpectIntEQ(XMEMCMP(outKey, extractAndExpand, outKeySz), 0);
600 /* Extract only. */
601 ExpectIntEQ(EVP_PKEY_CTX_hkdf_mode(ctx, EVP_PKEY_HKDEF_MODE_EXTRACT_ONLY),
602 WOLFSSL_SUCCESS);
603 ExpectIntEQ(EVP_PKEY_derive(ctx, outKey, &outKeySz), WOLFSSL_SUCCESS);
604 ExpectIntEQ(outKeySz, sizeof(extractOnly));
605 ExpectIntEQ(XMEMCMP(outKey, extractOnly, outKeySz), 0);
606 outKeySz = sizeof(outKey);
607 /* Expand only. */
608 ExpectIntEQ(EVP_PKEY_CTX_hkdf_mode(ctx, EVP_PKEY_HKDEF_MODE_EXPAND_ONLY),
609 WOLFSSL_SUCCESS);
610 ExpectIntEQ(EVP_PKEY_derive(ctx, outKey, &outKeySz), WOLFSSL_SUCCESS);
611 ExpectIntEQ(outKeySz, sizeof(expandOnly));
612 ExpectIntEQ(XMEMCMP(outKey, expandOnly, outKeySz), 0);
613 outKeySz = sizeof(outKey);
614 /* Extract and expand with appended additional info. */
615 ExpectIntEQ(EVP_PKEY_CTX_add1_hkdf_info(ctx, info2, sizeof(info2)),
616 WOLFSSL_SUCCESS);
617 ExpectIntEQ(EVP_PKEY_CTX_hkdf_mode(ctx,
618 EVP_PKEY_HKDEF_MODE_EXTRACT_AND_EXPAND), WOLFSSL_SUCCESS);
619 ExpectIntEQ(EVP_PKEY_derive(ctx, outKey, &outKeySz), WOLFSSL_SUCCESS);
620 ExpectIntEQ(outKeySz, sizeof(extractAndExpandAddInfo));
621 ExpectIntEQ(XMEMCMP(outKey, extractAndExpandAddInfo, outKeySz), 0);
622
623 EVP_PKEY_CTX_free(ctx);
624#endif /* OPENSSL_EXTRA && HAVE_HKDF */
625 return EXPECT_RESULT();
626}
627
628
629int test_wolfSSL_EVP_PBE_scrypt(void)
630{
631 EXPECT_DECLS;
632#if defined(OPENSSL_EXTRA) && defined(HAVE_SCRYPT) && defined(HAVE_PBKDF2) && \
633 (!defined(HAVE_FIPS_VERSION) || (HAVE_FIPS_VERSION < 5))
634#if !defined(NO_PWDBASED) && !defined(NO_SHA256)
635 int ret;
636
637 const char pwd[] = {'p','a','s','s','w','o','r','d'};
638 int pwdlen = sizeof(pwd);
639 const byte salt[] = {'N','a','C','l'};
640 int saltlen = sizeof(salt);
641 byte key[80];
642 word64 numOvr32 = (word64)INT32_MAX + 1;
643
644 /* expected derived key for N:16, r:1, p:1 */
645 const byte expectedKey[] = {
646 0xAE, 0xC6, 0xB7, 0x48, 0x3E, 0xD2, 0x6E, 0x08, 0x80, 0x2B,
647 0x41, 0xF4, 0x03, 0x20, 0x86, 0xA0, 0xE8, 0x86, 0xBE, 0x7A,
648 0xC4, 0x8F, 0xCF, 0xD9, 0x2F, 0xF0, 0xCE, 0xF8, 0x10, 0x97,
649 0x52, 0xF4, 0xAC, 0x74, 0xB0, 0x77, 0x26, 0x32, 0x56, 0xA6,
650 0x5A, 0x99, 0x70, 0x1B, 0x7A, 0x30, 0x4D, 0x46, 0x61, 0x1C,
651 0x8A, 0xA3, 0x91, 0xE7, 0x99, 0xCE, 0x10, 0xA2, 0x77, 0x53,
652 0xE7, 0xE9, 0xC0, 0x9A};
653
654 /* N r p mx key keylen */
655 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 0, 1, 1, 0, key, 64);
656 ExpectIntEQ(ret, 0); /* N must be greater than 1 */
657
658 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 3, 1, 1, 0, key, 64);
659 ExpectIntEQ(ret, 0); /* N must be power of 2 */
660
661 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 0, 1, 0, key, 64);
662 ExpectIntEQ(ret, 0); /* r must be greater than 0 */
663
664 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 1, 0, 0, key, 64);
665 ExpectIntEQ(ret, 0); /* p must be greater than 0 */
666
667 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 1, 1, 0, key, 0);
668 ExpectIntEQ(ret, 0); /* keylen must be greater than 0 */
669
670 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 9, 1, 0, key, 64);
671 ExpectIntEQ(ret, 0); /* r must be smaller than 9 */
672
673 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 1, 1, 0, NULL, 64);
674 ExpectIntEQ(ret, 1); /* should succeed if key is NULL */
675
676 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 1, 1, 0, key, 64);
677 ExpectIntEQ(ret, 1); /* should succeed */
678
679 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, numOvr32, 1, 0,
680 key, 64);
681 ExpectIntEQ(ret, 0); /* should fail since r is greater than INT32_MAC */
682
683 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 2, 1, numOvr32, 0,
684 key, 64);
685 ExpectIntEQ(ret, 0); /* should fail since p is greater than INT32_MAC */
686
687 ret = EVP_PBE_scrypt(pwd, pwdlen, NULL, 0, 2, 1, 1, 0, key, 64);
688 ExpectIntEQ(ret, 1); /* should succeed even if salt is NULL */
689
690 ret = EVP_PBE_scrypt(pwd, pwdlen, NULL, 4, 2, 1, 1, 0, key, 64);
691 ExpectIntEQ(ret, 0); /* if salt is NULL, saltlen must be 0, otherwise fail*/
692
693 ret = EVP_PBE_scrypt(NULL, 0, salt, saltlen, 2, 1, 1, 0, key, 64);
694 ExpectIntEQ(ret, 1); /* should succeed if pwd is NULL and pwdlen is 0*/
695
696 ret = EVP_PBE_scrypt(NULL, 4, salt, saltlen, 2, 1, 1, 0, key, 64);
697 ExpectIntEQ(ret, 0); /* if pwd is NULL, pwdlen must be 0 */
698
699 ret = EVP_PBE_scrypt(NULL, 0, NULL, 0, 2, 1, 1, 0, key, 64);
700 ExpectIntEQ(ret, 1); /* should succeed even both pwd and salt are NULL */
701
702 ret = EVP_PBE_scrypt(pwd, pwdlen, salt, saltlen, 16, 1, 1, 0, key, 64);
703 ExpectIntEQ(ret, 1);
704
705 ret = XMEMCMP(expectedKey, key, sizeof(expectedKey));
706 ExpectIntEQ(ret, 0); /* derived key must be the same as expected-key */
707#endif /* !NO_PWDBASED && !NO_SHA256 */
708#endif /* OPENSSL_EXTRA && HAVE_SCRYPT && HAVE_PBKDF2 */
709 return EXPECT_RESULT();
710}
711
712int test_EVP_PKEY_cmp(void)
713{
714 EXPECT_DECLS;
715#if defined(OPENSSL_EXTRA)
716 EVP_PKEY *a = NULL;
717 EVP_PKEY *b = NULL;
718 const unsigned char *in;
719
720#if !defined(NO_RSA) && defined(USE_CERT_BUFFERS_2048)
721 in = client_key_der_2048;
722 ExpectNotNull(a = wolfSSL_d2i_PrivateKey(EVP_PKEY_RSA, NULL,
723 &in, (long)sizeof_client_key_der_2048));
724 in = client_key_der_2048;
725 ExpectNotNull(b = wolfSSL_d2i_PrivateKey(EVP_PKEY_RSA, NULL,
726 &in, (long)sizeof_client_key_der_2048));
727
728 /* Test success case RSA */
729#if defined(WOLFSSL_ERROR_CODE_OPENSSL)
730 ExpectIntEQ(EVP_PKEY_cmp(a, b), 1);
731#else
732 ExpectIntEQ(EVP_PKEY_cmp(a, b), 0);
733#endif /* WOLFSSL_ERROR_CODE_OPENSSL */
734
735 EVP_PKEY_free(b);
736 b = NULL;
737 EVP_PKEY_free(a);
738 a = NULL;
739#endif
740
741#if defined(HAVE_ECC) && defined(USE_CERT_BUFFERS_256)
742 in = ecc_clikey_der_256;
743 ExpectNotNull(a = wolfSSL_d2i_PrivateKey(EVP_PKEY_EC, NULL,
744 &in, (long)sizeof_ecc_clikey_der_256));
745 in = ecc_clikey_der_256;
746 ExpectNotNull(b = wolfSSL_d2i_PrivateKey(EVP_PKEY_EC, NULL,
747 &in, (long)sizeof_ecc_clikey_der_256));
748
749 /* Test success case ECC */
750#if defined(WOLFSSL_ERROR_CODE_OPENSSL)
751 ExpectIntEQ(EVP_PKEY_cmp(a, b), 1);
752#else
753 ExpectIntEQ(EVP_PKEY_cmp(a, b), 0);
754#endif /* WOLFSSL_ERROR_CODE_OPENSSL */
755
756 EVP_PKEY_free(b);
757 b = NULL;
758 EVP_PKEY_free(a);
759 a = NULL;
760#endif
761
762 /* Test failure cases */
763#if !defined(NO_RSA) && defined(USE_CERT_BUFFERS_2048) && \
764 defined(HAVE_ECC) && defined(USE_CERT_BUFFERS_256)
765
766 in = client_key_der_2048;
767 ExpectNotNull(a = wolfSSL_d2i_PrivateKey(EVP_PKEY_RSA, NULL,
768 &in, (long)sizeof_client_key_der_2048));
769 in = ecc_clikey_der_256;
770 ExpectNotNull(b = wolfSSL_d2i_PrivateKey(EVP_PKEY_EC, NULL,
771 &in, (long)sizeof_ecc_clikey_der_256));
772
773#if defined(WOLFSSL_ERROR_CODE_OPENSSL)
774 ExpectIntEQ(EVP_PKEY_cmp(a, b), -1);
775#else
776 ExpectIntNE(EVP_PKEY_cmp(a, b), 0);
777#endif /* WOLFSSL_ERROR_CODE_OPENSSL */
778 EVP_PKEY_free(b);
779 b = NULL;
780 EVP_PKEY_free(a);
781 a = NULL;
782#endif
783
784 /* invalid or empty failure cases */
785 a = EVP_PKEY_new();
786 b = EVP_PKEY_new();
787#if defined(WOLFSSL_ERROR_CODE_OPENSSL)
788 ExpectIntEQ(EVP_PKEY_cmp(NULL, NULL), 0);
789 ExpectIntEQ(EVP_PKEY_cmp(a, NULL), 0);
790 ExpectIntEQ(EVP_PKEY_cmp(NULL, b), 0);
791#ifdef NO_RSA
792 /* Type check will fail since RSA is the default EVP key type */
793 ExpectIntEQ(EVP_PKEY_cmp(a, b), -2);
794#else
795 ExpectIntEQ(EVP_PKEY_cmp(a, b), 0);
796#endif
797#else
798 ExpectIntNE(EVP_PKEY_cmp(NULL, NULL), 0);
799 ExpectIntNE(EVP_PKEY_cmp(a, NULL), 0);
800 ExpectIntNE(EVP_PKEY_cmp(NULL, b), 0);
801 ExpectIntNE(EVP_PKEY_cmp(a, b), 0);
802#endif
803 EVP_PKEY_free(b);
804 EVP_PKEY_free(a);
805
806 (void)in;
807#endif
808 return EXPECT_RESULT();
809}
810
811int test_wolfSSL_EVP_PKEY_set1_get1_DSA(void)
812{
813 EXPECT_DECLS;
814#if defined(OPENSSL_ALL) && !defined (NO_DSA) && !defined(HAVE_SELFTEST) && \
815 !defined(WC_FIPS_186_5_PLUS) && defined(WOLFSSL_KEY_GEN)
816 DSA *dsa = NULL;
817 DSA *setDsa = NULL;
818 EVP_PKEY *pkey = NULL;
819 EVP_PKEY *set1Pkey = NULL;
820
821 SHA_CTX sha;
822 byte signature[DSA_SIG_SIZE];
823 byte hash[WC_SHA_DIGEST_SIZE];
824 word32 bytes;
825 int answer;
826#ifdef USE_CERT_BUFFERS_1024
827 const unsigned char* dsaKeyDer = dsa_key_der_1024;
828 int dsaKeySz = sizeof_dsa_key_der_1024;
829 byte tmp[ONEK_BUF];
830
831 XMEMSET(tmp, 0, sizeof(tmp));
832 XMEMCPY(tmp, dsaKeyDer , dsaKeySz);
833 bytes = dsaKeySz;
834#elif defined(USE_CERT_BUFFERS_2048)
835 const unsigned char* dsaKeyDer = dsa_key_der_2048;
836 int dsaKeySz = sizeof_dsa_key_der_2048;
837 byte tmp[TWOK_BUF];
838
839 XMEMSET(tmp, 0, sizeof(tmp));
840 XMEMCPY(tmp, dsaKeyDer , dsaKeySz);
841 bytes = (word32)dsaKeySz;
842#else
843 byte tmp[TWOK_BUF];
844 const unsigned char* dsaKeyDer = (const unsigned char*)tmp;
845 int dsaKeySz;
846 XFILE fp = XBADFILE;
847
848 XMEMSET(tmp, 0, sizeof(tmp));
849 ExpectTrue((fp = XFOPEN("./certs/dsa2048.der", "rb")) != XBADFILE);
850 ExpectIntGT(dsaKeySz = bytes = (word32) XFREAD(tmp, 1, sizeof(tmp), fp), 0);
851 if (fp != XBADFILE)
852 XFCLOSE(fp);
853#endif /* END USE_CERT_BUFFERS_1024 */
854
855 /* Create hash to later Sign and Verify */
856 ExpectIntEQ(SHA1_Init(&sha), WOLFSSL_SUCCESS);
857 ExpectIntEQ(SHA1_Update(&sha, tmp, bytes), WOLFSSL_SUCCESS);
858 ExpectIntEQ(SHA1_Final(hash,&sha), WOLFSSL_SUCCESS);
859
860 /* Initialize pkey with der format dsa key */
861 ExpectNotNull(d2i_PrivateKey(EVP_PKEY_DSA, &pkey, &dsaKeyDer,
862 (long)dsaKeySz));
863
864 /* Test wolfSSL_EVP_PKEY_get1_DSA */
865 /* Should Fail: NULL argument */
866 ExpectNull(dsa = EVP_PKEY_get0_DSA(NULL));
867 ExpectNull(dsa = EVP_PKEY_get1_DSA(NULL));
868 /* Should Pass: Initialized pkey argument */
869 ExpectNotNull(dsa = EVP_PKEY_get0_DSA(pkey));
870 ExpectNotNull(dsa = EVP_PKEY_get1_DSA(pkey));
871
872#ifdef USE_CERT_BUFFERS_1024
873 ExpectIntEQ(DSA_bits(dsa), 1024);
874#else
875 ExpectIntEQ(DSA_bits(dsa), 2048);
876#endif
877
878 /* Sign */
879 ExpectIntEQ(wolfSSL_DSA_do_sign(hash, signature, dsa), WOLFSSL_SUCCESS);
880 /* Verify. */
881 ExpectIntEQ(wolfSSL_DSA_do_verify(hash, signature, dsa, &answer),
882 WOLFSSL_SUCCESS);
883
884 /* Test wolfSSL_EVP_PKEY_set1_DSA */
885 /* Should Fail: set1Pkey not initialized */
886 ExpectIntNE(EVP_PKEY_set1_DSA(set1Pkey, dsa), WOLFSSL_SUCCESS);
887
888 /* Initialize set1Pkey */
889 set1Pkey = EVP_PKEY_new();
890
891 /* Should Fail Verify: setDsa not initialized from set1Pkey */
892 ExpectIntNE(wolfSSL_DSA_do_verify(hash,signature,setDsa,&answer),
893 WOLFSSL_SUCCESS);
894
895 /* Should Pass: set dsa into set1Pkey */
896 ExpectIntEQ(EVP_PKEY_set1_DSA(set1Pkey, dsa), WOLFSSL_SUCCESS);
897
898 DSA_free(dsa);
899 DSA_free(setDsa);
900 EVP_PKEY_free(pkey);
901 EVP_PKEY_free(set1Pkey);
902#endif /* OPENSSL_ALL && !NO_DSA && !HAVE_SELFTEST && !WC_FIPS_186_5_PLUS */
903 /* && WOLFSSL_KEY_GEN */
904 return EXPECT_RESULT();
905} /* END test_EVP_PKEY_set1_get1_DSA */
906
907int test_wolfSSL_EVP_PKEY_set1_get1_EC_KEY(void)
908{
909 EXPECT_DECLS;
910#if defined(HAVE_ECC) && defined(OPENSSL_ALL)
911 WOLFSSL_EC_KEY* ecKey = NULL;
912 WOLFSSL_EC_KEY* ecGet1 = NULL;
913 EVP_PKEY* pkey = NULL;
914
915 ExpectNotNull(ecKey = wolfSSL_EC_KEY_new());
916 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
917
918 /* Test wolfSSL_EVP_PKEY_set1_EC_KEY */
919 ExpectIntEQ(wolfSSL_EVP_PKEY_set1_EC_KEY(NULL, ecKey),
920 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
921 ExpectIntEQ(wolfSSL_EVP_PKEY_set1_EC_KEY(pkey, NULL),
922 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
923 /* Should fail since ecKey is empty */
924 ExpectIntEQ(wolfSSL_EVP_PKEY_set1_EC_KEY(pkey, ecKey),
925 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
926 ExpectIntEQ(wolfSSL_EC_KEY_generate_key(ecKey), 1);
927 ExpectIntEQ(wolfSSL_EVP_PKEY_set1_EC_KEY(pkey, ecKey), WOLFSSL_SUCCESS);
928
929 /* Test wolfSSL_EVP_PKEY_get1_EC_KEY */
930 ExpectNull(wolfSSL_EVP_PKEY_get1_EC_KEY(NULL));
931 ExpectNotNull(ecGet1 = wolfSSL_EVP_PKEY_get1_EC_KEY(pkey));
932
933 wolfSSL_EC_KEY_free(ecKey);
934 wolfSSL_EC_KEY_free(ecGet1);
935 EVP_PKEY_free(pkey);
936#endif /* HAVE_ECC && OPENSSL_ALL */
937 return EXPECT_RESULT();
938} /* END test_EVP_PKEY_set1_get1_EC_KEY */
939
940int test_wolfSSL_EVP_PKEY_get0_EC_KEY(void)
941{
942 EXPECT_DECLS;
943#if defined(HAVE_ECC) && defined(OPENSSL_ALL)
944 WOLFSSL_EVP_PKEY* pkey = NULL;
945
946 ExpectNull(EVP_PKEY_get0_EC_KEY(NULL));
947
948 ExpectNotNull(pkey = EVP_PKEY_new());
949 ExpectNull(EVP_PKEY_get0_EC_KEY(pkey));
950 EVP_PKEY_free(pkey);
951#endif
952 return EXPECT_RESULT();
953}
954
955int test_wolfSSL_EVP_PKEY_set1_get1_DH(void)
956{
957 EXPECT_DECLS;
958#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
959#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
960#if !defined(NO_DH) && defined(WOLFSSL_DH_EXTRA) && !defined(NO_FILESYSTEM)
961 DH *dh = NULL;
962 DH *setDh = NULL;
963 EVP_PKEY *pkey = NULL;
964
965 XFILE f = XBADFILE;
966 unsigned char buf[4096];
967 const unsigned char* pt = buf;
968 const char* dh2048 = "./certs/dh2048.der";
969 long len = 0;
970 int code = -1;
971
972 XMEMSET(buf, 0, sizeof(buf));
973
974 ExpectTrue((f = XFOPEN(dh2048, "rb")) != XBADFILE);
975 ExpectTrue((len = (long)XFREAD(buf, 1, sizeof(buf), f)) > 0);
976 if (f != XBADFILE)
977 XFCLOSE(f);
978
979 /* Load dh2048.der into DH with internal format */
980 ExpectNotNull(setDh = wolfSSL_d2i_DHparams(NULL, &pt, len));
981
982 ExpectIntEQ(wolfSSL_DH_check(setDh, &code), WOLFSSL_SUCCESS);
983 ExpectIntEQ(code, 0);
984 code = -1;
985
986 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
987
988 /* Set DH into PKEY */
989 ExpectIntEQ(wolfSSL_EVP_PKEY_set1_DH(pkey, setDh), WOLFSSL_SUCCESS);
990
991 /* Get DH from PKEY */
992 ExpectNotNull(dh = wolfSSL_EVP_PKEY_get1_DH(pkey));
993
994 ExpectIntEQ(wolfSSL_DH_check(dh, &code), WOLFSSL_SUCCESS);
995 ExpectIntEQ(code, 0);
996
997 EVP_PKEY_free(pkey);
998 DH_free(setDh);
999 setDh = NULL;
1000 DH_free(dh);
1001 dh = NULL;
1002#endif /* !NO_DH && WOLFSSL_DH_EXTRA && !NO_FILESYSTEM */
1003#endif /* !HAVE_FIPS || HAVE_FIPS_VERSION > 2 */
1004#endif /* OPENSSL_ALL || WOLFSSL_QT || WOLFSSL_OPENSSH */
1005 return EXPECT_RESULT();
1006} /* END test_EVP_PKEY_set1_get1_DH */
1007
1008int test_wolfSSL_EVP_PKEY_assign(void)
1009{
1010 EXPECT_DECLS;
1011#if (!defined(NO_RSA) || !defined(NO_DSA) || defined(HAVE_ECC)) && \
1012 defined(OPENSSL_ALL)
1013 int type;
1014 WOLFSSL_EVP_PKEY* pkey = NULL;
1015#ifndef NO_RSA
1016 WOLFSSL_RSA* rsa = NULL;
1017#endif
1018#ifndef NO_DSA
1019 WOLFSSL_DSA* dsa = NULL;
1020#endif
1021#ifdef HAVE_ECC
1022 WOLFSSL_EC_KEY* ecKey = NULL;
1023#endif
1024
1025#ifndef NO_RSA
1026 type = EVP_PKEY_RSA;
1027 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1028 ExpectNotNull(rsa = wolfSSL_RSA_new());
1029 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(NULL, type, rsa),
1030 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1031 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, NULL),
1032 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1033 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, -1, rsa),
1034 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1035 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, rsa), WOLFSSL_SUCCESS);
1036 if (EXPECT_FAIL()) {
1037 wolfSSL_RSA_free(rsa);
1038 }
1039 wolfSSL_EVP_PKEY_free(pkey);
1040 pkey = NULL;
1041#endif /* NO_RSA */
1042
1043#ifndef NO_DSA
1044 type = EVP_PKEY_DSA;
1045 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1046 ExpectNotNull(dsa = wolfSSL_DSA_new());
1047 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(NULL, type, dsa),
1048 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1049 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, NULL),
1050 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1051 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, -1, dsa),
1052 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1053 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, dsa), WOLFSSL_SUCCESS);
1054 if (EXPECT_FAIL()) {
1055 wolfSSL_DSA_free(dsa);
1056 }
1057 wolfSSL_EVP_PKEY_free(pkey);
1058 pkey = NULL;
1059#endif /* NO_DSA */
1060
1061#ifdef HAVE_ECC
1062 type = EVP_PKEY_EC;
1063 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1064 ExpectNotNull(ecKey = wolfSSL_EC_KEY_new());
1065 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(NULL, type, ecKey),
1066 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1067 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, NULL),
1068 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1069 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, -1, ecKey),
1070 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1071 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, ecKey),
1072 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1073 ExpectIntEQ(wolfSSL_EC_KEY_generate_key(ecKey), 1);
1074 ExpectIntEQ(wolfSSL_EVP_PKEY_assign(pkey, type, ecKey), WOLFSSL_SUCCESS);
1075 if (EXPECT_FAIL()) {
1076 wolfSSL_EC_KEY_free(ecKey);
1077 }
1078 wolfSSL_EVP_PKEY_free(pkey);
1079 pkey = NULL;
1080#endif /* HAVE_ECC */
1081#endif /* (!NO_RSA || !NO_DSA || HAVE_ECC) && OPENSSL_ALL */
1082 return EXPECT_RESULT();
1083}
1084
1085int test_wolfSSL_EVP_PKEY_assign_DH(void)
1086{
1087 EXPECT_DECLS;
1088#if !defined(NO_DH) && defined(OPENSSL_ALL) && (!defined(HAVE_FIPS) || \
1089 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2)))
1090 XFILE f = XBADFILE;
1091 unsigned char buf[4096];
1092 const unsigned char* pt = buf;
1093 const char* params1 = "./certs/dh2048.der";
1094 long len = 0;
1095 WOLFSSL_DH* dh = NULL;
1096 WOLFSSL_EVP_PKEY* pkey = NULL;
1097 XMEMSET(buf, 0, sizeof(buf));
1098
1099 /* Load DH parameters DER. */
1100 ExpectTrue((f = XFOPEN(params1, "rb")) != XBADFILE);
1101 ExpectTrue((len = (long)XFREAD(buf, 1, sizeof(buf), f)) > 0);
1102 if (f != XBADFILE)
1103 XFCLOSE(f);
1104
1105 ExpectNotNull(dh = wolfSSL_d2i_DHparams(NULL, &pt, len));
1106 ExpectIntEQ(DH_generate_key(dh), WOLFSSL_SUCCESS);
1107
1108 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1109
1110 /* Bad cases */
1111 ExpectIntEQ(wolfSSL_EVP_PKEY_assign_DH(NULL, dh),
1112 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1113 ExpectIntEQ(wolfSSL_EVP_PKEY_assign_DH(pkey, NULL),
1114 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1115 ExpectIntEQ(wolfSSL_EVP_PKEY_assign_DH(NULL, NULL),
1116 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1117
1118 /* Good case */
1119 ExpectIntEQ(wolfSSL_EVP_PKEY_assign_DH(pkey, dh), WOLFSSL_SUCCESS);
1120 if (EXPECT_FAIL()) {
1121 wolfSSL_DH_free(dh);
1122 }
1123
1124 EVP_PKEY_free(pkey);
1125#endif
1126 return EXPECT_RESULT();
1127}
1128
1129int test_EVP_PKEY_rsa(void)
1130{
1131 EXPECT_DECLS;
1132#if defined(OPENSSL_EXTRA) && !defined(NO_RSA)
1133 WOLFSSL_RSA* rsa = NULL;
1134 WOLFSSL_EVP_PKEY* pkey = NULL;
1135
1136 ExpectNotNull(rsa = wolfSSL_RSA_new());
1137 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1138 ExpectIntEQ(EVP_PKEY_assign_RSA(NULL, rsa),
1139 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1140 ExpectIntEQ(EVP_PKEY_assign_RSA(pkey, NULL),
1141 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1142 ExpectIntEQ(EVP_PKEY_assign_RSA(pkey, rsa), WOLFSSL_SUCCESS);
1143 if (EXPECT_FAIL()) {
1144 wolfSSL_RSA_free(rsa);
1145 }
1146 ExpectPtrEq(EVP_PKEY_get0_RSA(pkey), rsa);
1147 wolfSSL_EVP_PKEY_free(pkey);
1148#endif
1149 return EXPECT_RESULT();
1150}
1151
1152int test_EVP_PKEY_ec(void)
1153{
1154 EXPECT_DECLS;
1155#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC)
1156#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1157 WOLFSSL_EC_KEY* ecKey = NULL;
1158 WOLFSSL_EVP_PKEY* pkey = NULL;
1159
1160 ExpectNotNull(ecKey = wolfSSL_EC_KEY_new());
1161 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1162 ExpectIntEQ(EVP_PKEY_assign_EC_KEY(NULL, ecKey),
1163 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1164 ExpectIntEQ(EVP_PKEY_assign_EC_KEY(pkey, NULL),
1165 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1166 /* Should fail since ecKey is empty */
1167 ExpectIntEQ(EVP_PKEY_assign_EC_KEY(pkey, ecKey),
1168 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1169 ExpectIntEQ(wolfSSL_EC_KEY_generate_key(ecKey), 1);
1170 ExpectIntEQ(EVP_PKEY_assign_EC_KEY(pkey, ecKey), WOLFSSL_SUCCESS);
1171 if (EXPECT_FAIL()) {
1172 wolfSSL_EC_KEY_free(ecKey);
1173 }
1174 wolfSSL_EVP_PKEY_free(pkey);
1175#endif
1176#endif
1177 return EXPECT_RESULT();
1178}
1179
1180int test_wolfSSL_EVP_PKEY_missing_parameters(void)
1181{
1182 EXPECT_DECLS;
1183#if defined(OPENSSL_ALL) && !defined(NO_WOLFSSL_STUB)
1184 WOLFSSL_EVP_PKEY* pkey = NULL;
1185
1186 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1187
1188 ExpectIntEQ(wolfSSL_EVP_PKEY_missing_parameters(pkey), 0);
1189 ExpectIntEQ(wolfSSL_EVP_PKEY_missing_parameters(NULL), 0);
1190
1191 EVP_PKEY_free(pkey);
1192#endif
1193 return EXPECT_RESULT();
1194}
1195
1196int test_wolfSSL_EVP_PKEY_copy_parameters(void)
1197{
1198 EXPECT_DECLS;
1199#if defined(OPENSSL_EXTRA) && !defined(NO_DH) && defined(WOLFSSL_KEY_GEN) && \
1200 !defined(HAVE_SELFTEST) && defined(WOLFSSL_DH_EXTRA) && \
1201 (defined(OPENSSL_ALL) || defined(WOLFSSL_QT)) && !defined(NO_FILESYSTEM)
1202 WOLFSSL_EVP_PKEY* params = NULL;
1203 WOLFSSL_EVP_PKEY* copy = NULL;
1204 DH* dh = NULL;
1205 BIGNUM* p1;
1206 BIGNUM* g1;
1207 BIGNUM* q1;
1208 BIGNUM* p2;
1209 BIGNUM* g2;
1210 BIGNUM* q2;
1211
1212 /* create DH with DH_get_2048_256 params */
1213 ExpectNotNull(params = wolfSSL_EVP_PKEY_new());
1214 ExpectNotNull(dh = DH_get_2048_256());
1215 ExpectIntEQ(EVP_PKEY_set1_DH(params, dh), WOLFSSL_SUCCESS);
1216 DH_get0_pqg(dh, (const BIGNUM**)&p1,
1217 (const BIGNUM**)&q1,
1218 (const BIGNUM**)&g1);
1219 DH_free(dh);
1220 dh = NULL;
1221
1222 /* create DH with random generated DH params */
1223 ExpectNotNull(copy = wolfSSL_EVP_PKEY_new());
1224 ExpectNotNull(dh = DH_generate_parameters(2048, 2, NULL, NULL));
1225 ExpectIntEQ(EVP_PKEY_set1_DH(copy, dh), WOLFSSL_SUCCESS);
1226 DH_free(dh);
1227 dh = NULL;
1228
1229 ExpectIntEQ(EVP_PKEY_copy_parameters(copy, params), WOLFSSL_SUCCESS);
1230 ExpectNotNull(dh = EVP_PKEY_get1_DH(copy));
1231 ExpectNotNull(dh->p);
1232 ExpectNotNull(dh->g);
1233 ExpectNotNull(dh->q);
1234 DH_get0_pqg(dh, (const BIGNUM**)&p2,
1235 (const BIGNUM**)&q2,
1236 (const BIGNUM**)&g2);
1237
1238 ExpectIntEQ(BN_cmp(p1, p2), 0);
1239 ExpectIntEQ(BN_cmp(q1, q2), 0);
1240 ExpectIntEQ(BN_cmp(g1, g2), 0);
1241
1242 DH_free(dh);
1243 dh = NULL;
1244 EVP_PKEY_free(copy);
1245 EVP_PKEY_free(params);
1246#endif
1247 return EXPECT_RESULT();
1248}
1249
1250int test_wolfSSL_EVP_PKEY_paramgen(void)
1251{
1252 EXPECT_DECLS;
1253 /* ECC check taken from ecc.c. It is the condition that defines ECC256 */
1254#if defined(OPENSSL_ALL) && !defined(NO_ECC_SECP) && \
1255 ((!defined(NO_ECC256) || defined(HAVE_ALL_CURVES)) && \
1256 ECC_MIN_KEY_SZ <= 256)
1257 EVP_PKEY_CTX* ctx = NULL;
1258 EVP_PKEY* pkey = NULL;
1259
1260 /* Test error conditions. */
1261 ExpectIntEQ(EVP_PKEY_paramgen(NULL, &pkey),
1262 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1263 ExpectNotNull(ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_EC, NULL));
1264 ExpectIntEQ(EVP_PKEY_paramgen(ctx, NULL), WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1265
1266#ifndef NO_RSA
1267 EVP_PKEY_CTX_free(ctx);
1268 /* Parameter generation for RSA not supported yet. */
1269 ExpectNotNull(ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, NULL));
1270 ExpectIntEQ(EVP_PKEY_paramgen(ctx, &pkey),
1271 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1272#endif
1273
1274#ifdef HAVE_ECC
1275 EVP_PKEY_CTX_free(ctx);
1276 ExpectNotNull(ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_EC, NULL));
1277 ExpectIntEQ(EVP_PKEY_paramgen_init(ctx), WOLFSSL_SUCCESS);
1278 ExpectIntEQ(EVP_PKEY_CTX_set_ec_paramgen_curve_nid(ctx,
1279 NID_X9_62_prime256v1), WOLFSSL_SUCCESS);
1280 ExpectIntEQ(EVP_PKEY_paramgen(ctx, &pkey), WOLFSSL_SUCCESS);
1281 ExpectIntEQ(EVP_PKEY_CTX_set_ec_param_enc(ctx, OPENSSL_EC_NAMED_CURVE),
1282 WOLFSSL_SUCCESS);
1283 ExpectIntEQ(EVP_PKEY_keygen_init(ctx), WOLFSSL_SUCCESS);
1284 ExpectIntEQ(EVP_PKEY_keygen(ctx, &pkey), WOLFSSL_SUCCESS);
1285#endif
1286
1287 EVP_PKEY_CTX_free(ctx);
1288 EVP_PKEY_free(pkey);
1289#endif
1290 return EXPECT_RESULT();
1291}
1292
1293int test_wolfSSL_EVP_PKEY_param_check(void)
1294{
1295 EXPECT_DECLS;
1296#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
1297#if !defined(NO_DH) && defined(WOLFSSL_DH_EXTRA) && !defined(NO_FILESYSTEM)
1298
1299 DH *dh = NULL;
1300 DH *setDh = NULL;
1301 EVP_PKEY *pkey = NULL;
1302 EVP_PKEY_CTX* ctx = NULL;
1303
1304 FILE* f = NULL;
1305 unsigned char buf[512];
1306 const unsigned char* pt = buf;
1307 const char* dh2048 = "./certs/dh2048.der";
1308 long len = 0;
1309 int code = -1;
1310
1311 XMEMSET(buf, 0, sizeof(buf));
1312
1313 ExpectTrue((f = XFOPEN(dh2048, "rb")) != XBADFILE);
1314 ExpectTrue((len = (long)XFREAD(buf, 1, sizeof(buf), f)) > 0);
1315 if (f != XBADFILE)
1316 XFCLOSE(f);
1317
1318 /* Load dh2048.der into DH with internal format */
1319 ExpectNotNull(setDh = d2i_DHparams(NULL, &pt, len));
1320 ExpectIntEQ(DH_check(setDh, &code), WOLFSSL_SUCCESS);
1321 ExpectIntEQ(code, 0);
1322 code = -1;
1323
1324 pkey = wolfSSL_EVP_PKEY_new();
1325 /* Set DH into PKEY */
1326 ExpectIntEQ(EVP_PKEY_set1_DH(pkey, setDh), WOLFSSL_SUCCESS);
1327 /* create ctx from pkey */
1328 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
1329 ExpectIntEQ(EVP_PKEY_param_check(ctx), 1/* valid */);
1330
1331 /* TODO: more invalid cases */
1332 ExpectIntEQ(EVP_PKEY_param_check(NULL), 0);
1333
1334 EVP_PKEY_CTX_free(ctx);
1335 EVP_PKEY_free(pkey);
1336 DH_free(setDh);
1337 setDh = NULL;
1338 DH_free(dh);
1339 dh = NULL;
1340#endif
1341#endif
1342 return EXPECT_RESULT();
1343}
1344
1345int test_wolfSSL_EVP_PKEY_keygen_init(void)
1346{
1347 EXPECT_DECLS;
1348#ifdef OPENSSL_ALL
1349 WOLFSSL_EVP_PKEY* pkey = NULL;
1350 EVP_PKEY_CTX *ctx = NULL;
1351
1352 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1353 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
1354
1355 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen_init(ctx), WOLFSSL_SUCCESS);
1356 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen_init(NULL), WOLFSSL_SUCCESS);
1357
1358 EVP_PKEY_CTX_free(ctx);
1359 EVP_PKEY_free(pkey);
1360#endif
1361 return EXPECT_RESULT();
1362}
1363
1364int test_wolfSSL_EVP_PKEY_keygen(void)
1365{
1366 EXPECT_DECLS;
1367#ifdef OPENSSL_ALL
1368 WOLFSSL_EVP_PKEY* pkey = NULL;
1369 EVP_PKEY_CTX* ctx = NULL;
1370#if !defined(NO_DH) && (!defined(HAVE_FIPS) || FIPS_VERSION_GT(2,0))
1371 WOLFSSL_EVP_PKEY* params = NULL;
1372 DH* dh = NULL;
1373 const BIGNUM* pubkey = NULL;
1374 const BIGNUM* privkey = NULL;
1375 ASN1_INTEGER* asn1int = NULL;
1376 unsigned int length = 0;
1377 byte* derBuffer = NULL;
1378#endif
1379
1380 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
1381 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
1382
1383 /* Bad cases */
1384 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen(NULL, &pkey), 0);
1385 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen(ctx, NULL), 0);
1386 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen(NULL, NULL), 0);
1387
1388 /* Good case */
1389 ExpectIntEQ(wolfSSL_EVP_PKEY_keygen(ctx, &pkey), 0);
1390
1391 EVP_PKEY_CTX_free(ctx);
1392 ctx = NULL;
1393 EVP_PKEY_free(pkey);
1394 pkey = NULL;
1395
1396#if !defined(NO_DH) && (!defined(HAVE_FIPS) || FIPS_VERSION_GT(2,0))
1397 /* Test DH keygen */
1398 {
1399 ExpectNotNull(params = wolfSSL_EVP_PKEY_new());
1400 ExpectNotNull(dh = DH_get_2048_256());
1401 ExpectIntEQ(EVP_PKEY_set1_DH(params, dh), WOLFSSL_SUCCESS);
1402 ExpectNotNull(ctx = EVP_PKEY_CTX_new(params, NULL));
1403 ExpectIntEQ(EVP_PKEY_keygen_init(ctx), WOLFSSL_SUCCESS);
1404 ExpectIntEQ(EVP_PKEY_keygen(ctx, &pkey), WOLFSSL_SUCCESS);
1405
1406 DH_free(dh);
1407 dh = NULL;
1408 EVP_PKEY_CTX_free(ctx);
1409 EVP_PKEY_free(params);
1410
1411 /* try exporting generated key to DER, to verify */
1412 ExpectNotNull(dh = EVP_PKEY_get1_DH(pkey));
1413 DH_get0_key(dh, &pubkey, &privkey);
1414 ExpectNotNull(pubkey);
1415 ExpectNotNull(privkey);
1416 ExpectNotNull(asn1int = BN_to_ASN1_INTEGER(pubkey, NULL));
1417 ExpectIntGT((length = i2d_ASN1_INTEGER(asn1int, &derBuffer)), 0);
1418
1419 ASN1_INTEGER_free(asn1int);
1420 DH_free(dh);
1421 dh = NULL;
1422 XFREE(derBuffer, NULL, DYNAMIC_TYPE_TMP_BUFFER);
1423
1424 EVP_PKEY_free(pkey);
1425 }
1426#endif
1427#endif
1428 return EXPECT_RESULT();
1429}
1430
1431int test_wolfSSL_EVP_SignInit_ex(void)
1432{
1433 EXPECT_DECLS;
1434#ifdef OPENSSL_ALL
1435 WOLFSSL_EVP_MD_CTX mdCtx;
1436 WOLFSSL_ENGINE* e = 0;
1437 const EVP_MD* md = EVP_sha256();
1438
1439 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1440 ExpectIntEQ(wolfSSL_EVP_SignInit_ex(&mdCtx, md, e), WOLFSSL_SUCCESS);
1441
1442 ExpectIntEQ(wolfSSL_EVP_MD_CTX_cleanup(&mdCtx), 1);
1443#endif
1444 return EXPECT_RESULT();
1445}
1446
1447#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1448 !defined(HAVE_SELFTEST)
1449#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1450 #ifndef TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1451 #define TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1452 #endif
1453#endif
1454#endif
1455#if defined(OPENSSL_EXTRA)
1456#if !defined (NO_DSA) && !defined(HAVE_SELFTEST) && defined(WOLFSSL_KEY_GEN)
1457 #ifndef TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1458 #define TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1459 #endif
1460#endif
1461#endif
1462#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC)
1463#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1464 #ifndef TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1465 #define TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1466 #endif
1467#endif
1468#endif
1469
1470#ifdef TEST_WOLFSSL_EVP_PKEY_SIGN_VERIFY
1471static int test_wolfSSL_EVP_PKEY_sign_verify(int keyType)
1472{
1473 EXPECT_DECLS;
1474#if defined(OPENSSL_EXTRA)
1475#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1476 !defined(HAVE_SELFTEST)
1477#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1478 WOLFSSL_RSA* rsa = NULL;
1479#endif
1480#endif
1481#if !defined (NO_DSA) && !defined(HAVE_SELFTEST) && defined(WOLFSSL_KEY_GEN)
1482 WOLFSSL_DSA* dsa = NULL;
1483#endif /* !NO_DSA && !HAVE_SELFTEST && WOLFSSL_KEY_GEN */
1484#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC)
1485#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1486 WOLFSSL_EC_KEY* ecKey = NULL;
1487#endif
1488#endif
1489 WOLFSSL_EVP_PKEY* pkey = NULL;
1490 WOLFSSL_EVP_PKEY_CTX* ctx = NULL;
1491 WOLFSSL_EVP_PKEY_CTX* ctx_verify = NULL;
1492 const char* in = "What is easy to do is easy not to do.";
1493 size_t inlen = XSTRLEN(in);
1494 byte hash[SHA256_DIGEST_LENGTH] = {0};
1495 byte zero[SHA256_DIGEST_LENGTH] = {0};
1496 SHA256_CTX c;
1497 byte* sig = NULL;
1498 byte* sigVerify = NULL;
1499 size_t siglen;
1500 size_t siglenOnlyLen;
1501 size_t keySz = 2048/8; /* Bytes */
1502
1503 ExpectNotNull(sig =
1504 (byte*)XMALLOC(keySz, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER));
1505 ExpectNotNull(sigVerify =
1506 (byte*)XMALLOC(keySz, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER));
1507
1508 siglen = keySz;
1509 ExpectNotNull(XMEMSET(sig, 0, keySz));
1510 ExpectNotNull(XMEMSET(sigVerify, 0, keySz));
1511
1512 /* Generate hash */
1513 SHA256_Init(&c);
1514 SHA256_Update(&c, in, inlen);
1515 SHA256_Final(hash, &c);
1516#ifdef WOLFSSL_SMALL_STACK_CACHE
1517 /* workaround for small stack cache case */
1518 wc_Sha256Free((wc_Sha256*)&c);
1519#endif
1520
1521 /* Generate key */
1522 ExpectNotNull(pkey = EVP_PKEY_new());
1523 switch (keyType) {
1524 case EVP_PKEY_RSA:
1525#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1526 !defined(HAVE_SELFTEST)
1527#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1528 {
1529 ExpectNotNull(rsa = RSA_generate_key(2048, 3, NULL, NULL));
1530 ExpectIntEQ(EVP_PKEY_assign_RSA(pkey, rsa), WOLFSSL_SUCCESS);
1531 }
1532#endif
1533#endif
1534 break;
1535 case EVP_PKEY_DSA:
1536#if !defined (NO_DSA) && !defined(HAVE_SELFTEST) && defined(WOLFSSL_KEY_GEN)
1537 ExpectNotNull(dsa = DSA_new());
1538 ExpectIntEQ(DSA_generate_parameters_ex(dsa, 2048,
1539 NULL, 0, NULL, NULL, NULL), 1);
1540 ExpectIntEQ(DSA_generate_key(dsa), 1);
1541 ExpectIntEQ(EVP_PKEY_set1_DSA(pkey, dsa), WOLFSSL_SUCCESS);
1542#endif /* !NO_DSA && !HAVE_SELFTEST && WOLFSSL_KEY_GEN */
1543 break;
1544 case EVP_PKEY_EC:
1545#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC)
1546#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1547 {
1548 ExpectNotNull(ecKey = EC_KEY_new());
1549 ExpectIntEQ(EC_KEY_generate_key(ecKey), 1);
1550 ExpectIntEQ(
1551 EVP_PKEY_assign_EC_KEY(pkey, ecKey), WOLFSSL_SUCCESS);
1552 if (EXPECT_FAIL()) {
1553 EC_KEY_free(ecKey);
1554 }
1555 }
1556#endif
1557#endif
1558 break;
1559 }
1560 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
1561 ExpectIntEQ(EVP_PKEY_sign_init(ctx), WOLFSSL_SUCCESS);
1562#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1563 !defined(HAVE_SELFTEST)
1564#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1565 if (keyType == EVP_PKEY_RSA)
1566 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx, RSA_PKCS1_PADDING),
1567 WOLFSSL_SUCCESS);
1568#endif
1569#endif
1570
1571 /* Check returning only length */
1572 ExpectIntEQ(EVP_PKEY_sign(ctx, NULL, &siglenOnlyLen, hash,
1573 SHA256_DIGEST_LENGTH), WOLFSSL_SUCCESS);
1574 ExpectIntGT(siglenOnlyLen, 0);
1575 /* Sign data */
1576 ExpectIntEQ(EVP_PKEY_sign(ctx, sig, &siglen, hash,
1577 SHA256_DIGEST_LENGTH), WOLFSSL_SUCCESS);
1578 ExpectIntGE(siglenOnlyLen, siglen);
1579
1580 /* Verify signature */
1581 ExpectNotNull(ctx_verify = EVP_PKEY_CTX_new(pkey, NULL));
1582 ExpectIntEQ(EVP_PKEY_verify_init(ctx_verify), WOLFSSL_SUCCESS);
1583#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1584 !defined(HAVE_SELFTEST)
1585#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1586 if (keyType == EVP_PKEY_RSA)
1587 ExpectIntEQ(
1588 EVP_PKEY_CTX_set_rsa_padding(ctx_verify, RSA_PKCS1_PADDING),
1589 WOLFSSL_SUCCESS);
1590#endif
1591#endif
1592 ExpectIntEQ(EVP_PKEY_verify(
1593 ctx_verify, sig, siglen, hash, SHA256_DIGEST_LENGTH),
1594 WOLFSSL_SUCCESS);
1595
1596 if (keyType == EVP_PKEY_EC) {
1597#ifdef WC_TEST_NO_ECC_SIGN_VERIFY_ZERO_DIGEST
1598 /* wolfSSL differs from OpenSSL in that it treats a hash of all 0's as a
1599 * fatal error and does not attempt to verify */
1600 ExpectIntEQ(EVP_PKEY_verify(
1601 ctx_verify, sig, siglen, zero, SHA256_DIGEST_LENGTH),
1602 WC_NO_ERR_TRACE(WOLFSSL_FATAL_ERROR));
1603#else
1604 ExpectIntEQ(EVP_PKEY_verify(
1605 ctx_verify, sig, siglen, zero, SHA256_DIGEST_LENGTH),
1606 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1607#endif
1608 }
1609 else {
1610 ExpectIntEQ(EVP_PKEY_verify(
1611 ctx_verify, sig, siglen, zero, SHA256_DIGEST_LENGTH),
1612 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1613 }
1614
1615#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1616 !defined(HAVE_SELFTEST)
1617#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1618 if (keyType == EVP_PKEY_RSA) {
1619 #if defined(WC_RSA_NO_PADDING) || defined(WC_RSA_DIRECT)
1620 /* Try RSA sign/verify with no padding. */
1621 ExpectIntEQ(EVP_PKEY_sign_init(ctx), WOLFSSL_SUCCESS);
1622 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx, RSA_NO_PADDING),
1623 WOLFSSL_SUCCESS);
1624 ExpectIntEQ(EVP_PKEY_sign(ctx, sigVerify, &siglen, sig,
1625 siglen), WOLFSSL_SUCCESS);
1626 ExpectIntGE(siglenOnlyLen, siglen);
1627 ExpectIntEQ(EVP_PKEY_verify_init(ctx_verify), WOLFSSL_SUCCESS);
1628 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx_verify,
1629 RSA_NO_PADDING), WOLFSSL_SUCCESS);
1630 ExpectIntEQ(EVP_PKEY_verify(ctx_verify, sigVerify, siglen, sig,
1631 siglen), WOLFSSL_SUCCESS);
1632 #endif
1633
1634 /* Wrong padding schemes. */
1635 ExpectIntEQ(EVP_PKEY_sign_init(ctx), WOLFSSL_SUCCESS);
1636 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx,
1637 RSA_PKCS1_OAEP_PADDING), WOLFSSL_SUCCESS);
1638 ExpectIntNE(EVP_PKEY_sign(ctx, sigVerify, &siglen, sig,
1639 siglen), WOLFSSL_SUCCESS);
1640 ExpectIntEQ(EVP_PKEY_verify_init(ctx_verify), WOLFSSL_SUCCESS);
1641 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx_verify,
1642 RSA_PKCS1_OAEP_PADDING), WOLFSSL_SUCCESS);
1643 ExpectIntNE(EVP_PKEY_verify(ctx_verify, sigVerify, siglen, sig,
1644 siglen), WOLFSSL_SUCCESS);
1645
1646 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx, RSA_PKCS1_PADDING),
1647 WOLFSSL_SUCCESS);
1648 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx_verify,
1649 RSA_PKCS1_PADDING), WOLFSSL_SUCCESS);
1650 }
1651#endif
1652#endif
1653
1654 /* error cases */
1655 siglen = keySz; /* Reset because sig size may vary slightly */
1656 ExpectIntNE(EVP_PKEY_sign_init(NULL), WOLFSSL_SUCCESS);
1657 ExpectIntEQ(EVP_PKEY_sign_init(ctx), WOLFSSL_SUCCESS);
1658 ExpectIntNE(EVP_PKEY_sign(NULL, sig, &siglen, (byte*)in, inlen),
1659 WOLFSSL_SUCCESS);
1660 ExpectIntEQ(EVP_PKEY_sign(ctx, sig, &siglen, (byte*)in, inlen),
1661 WOLFSSL_SUCCESS);
1662
1663 EVP_PKEY_free(pkey);
1664 pkey = NULL;
1665#if !defined (NO_DSA) && !defined(HAVE_SELFTEST) && defined(WOLFSSL_KEY_GEN)
1666 DSA_free(dsa);
1667 dsa = NULL;
1668#endif /* !NO_DSA && !HAVE_SELFTEST && WOLFSSL_KEY_GEN */
1669 EVP_PKEY_CTX_free(ctx_verify);
1670 ctx_verify = NULL;
1671 EVP_PKEY_CTX_free(ctx);
1672 ctx = NULL;
1673
1674 XFREE(sig, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
1675 XFREE(sigVerify, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
1676#endif /* OPENSSL_EXTRA */
1677 return EXPECT_RESULT();
1678}
1679#endif
1680
1681int test_wolfSSL_EVP_PKEY_sign_verify_rsa(void)
1682{
1683 EXPECT_DECLS;
1684#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) && \
1685 !defined(HAVE_SELFTEST)
1686#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1687 ExpectIntEQ(test_wolfSSL_EVP_PKEY_sign_verify(EVP_PKEY_RSA), TEST_SUCCESS);
1688#endif
1689#endif
1690 return EXPECT_RESULT();
1691}
1692int test_wolfSSL_EVP_PKEY_sign_verify_dsa(void)
1693{
1694 EXPECT_DECLS;
1695#if defined(OPENSSL_EXTRA)
1696#if !defined (NO_DSA) && !defined(WC_FIPS_186_5_PLUS) && \
1697 !defined(HAVE_SELFTEST) && defined(WOLFSSL_KEY_GEN)
1698 ExpectIntEQ(test_wolfSSL_EVP_PKEY_sign_verify(EVP_PKEY_DSA), TEST_SUCCESS);
1699#endif
1700#endif
1701 return EXPECT_RESULT();
1702}
1703int test_wolfSSL_EVP_PKEY_sign_verify_ec(void)
1704{
1705 EXPECT_DECLS;
1706#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC)
1707#if !defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION>2))
1708 ExpectIntEQ(test_wolfSSL_EVP_PKEY_sign_verify(EVP_PKEY_EC), TEST_SUCCESS);
1709#endif
1710#endif
1711 return EXPECT_RESULT();
1712}
1713
1714
1715int test_wolfSSL_EVP_MD_rsa_signing(void)
1716{
1717 EXPECT_DECLS;
1718#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(USE_CERT_BUFFERS_2048)
1719 WOLFSSL_EVP_PKEY* privKey = NULL;
1720 WOLFSSL_EVP_PKEY* pubKey = NULL;
1721 WOLFSSL_EVP_PKEY_CTX* keyCtx = NULL;
1722 const char testData[] = "Hi There";
1723 WOLFSSL_EVP_MD_CTX mdCtx;
1724 WOLFSSL_EVP_MD_CTX mdCtxCopy;
1725 int ret;
1726 size_t checkSz = -1;
1727 int sz = 2048 / 8;
1728 const unsigned char* cp;
1729 const unsigned char* p;
1730 unsigned char check[2048/8];
1731 size_t i;
1732 int paddings[] = {
1733 RSA_PKCS1_PADDING,
1734#if !defined(HAVE_FIPS) && !defined(HAVE_SELFTEST) && defined(WC_RSA_PSS)
1735 RSA_PKCS1_PSS_PADDING,
1736#endif
1737 };
1738
1739
1740 cp = client_key_der_2048;
1741 ExpectNotNull((privKey = wolfSSL_d2i_PrivateKey(EVP_PKEY_RSA, NULL, &cp,
1742 sizeof_client_key_der_2048)));
1743 p = client_keypub_der_2048;
1744 ExpectNotNull((pubKey = wolfSSL_d2i_PUBKEY(NULL, &p,
1745 sizeof_client_keypub_der_2048)));
1746
1747 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1748 wolfSSL_EVP_MD_CTX_init(&mdCtxCopy);
1749 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1750 NULL, privKey), 1);
1751 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData,
1752 (unsigned int)XSTRLEN(testData)), 1);
1753 checkSz = sizeof(check);
1754 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
1755 ExpectIntEQ((int)checkSz, sz);
1756 checkSz = sizeof(check);
1757 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1758 ExpectIntEQ((int)checkSz,sz);
1759 ExpectIntEQ(wolfSSL_EVP_MD_CTX_copy_ex(&mdCtxCopy, &mdCtx), 1);
1760 ExpectIntEQ(wolfSSL_EVP_MD_CTX_copy_ex(&mdCtxCopy, &mdCtx), 1);
1761 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtxCopy);
1762 ExpectIntEQ(ret, 1);
1763 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1764 ExpectIntEQ(ret, 1);
1765
1766 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1767 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1768 NULL, pubKey), 1);
1769 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData,
1770 (unsigned int)XSTRLEN(testData)),
1771 1);
1772 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, check, checkSz), 1);
1773 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1774 ExpectIntEQ(ret, 1);
1775
1776 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1777 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1778 NULL, privKey), 1);
1779 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData, 4), 1);
1780 checkSz = sizeof(check);
1781 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
1782 ExpectIntEQ((int)checkSz, sz);
1783 checkSz = sizeof(check);
1784 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1785 ExpectIntEQ((int)checkSz, sz);
1786 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData + 4,
1787 (unsigned int)XSTRLEN(testData) - 4), 1);
1788 checkSz = sizeof(check);
1789 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1790 ExpectIntEQ((int)checkSz, sz);
1791 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1792 ExpectIntEQ(ret, 1);
1793
1794 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1795 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1796 NULL, pubKey), 1);
1797 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData, 4), 1);
1798 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData + 4,
1799 (unsigned int)XSTRLEN(testData) - 4),
1800 1);
1801 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, check, checkSz), 1);
1802 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1803 ExpectIntEQ(ret, 1);
1804
1805 /* Check all signing padding types */
1806 for (i = 0; i < sizeof(paddings)/sizeof(int); i++) {
1807 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1808 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, &keyCtx,
1809 wolfSSL_EVP_sha256(), NULL, privKey), 1);
1810 ExpectIntEQ(wolfSSL_EVP_PKEY_CTX_set_rsa_padding(keyCtx,
1811 paddings[i]), 1);
1812 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData,
1813 (unsigned int)XSTRLEN(testData)), 1);
1814 checkSz = sizeof(check);
1815 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
1816 ExpectIntEQ((int)checkSz, sz);
1817 checkSz = sizeof(check);
1818 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1819 ExpectIntEQ((int)checkSz,sz);
1820 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1821 ExpectIntEQ(ret, 1);
1822
1823 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1824 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, &keyCtx,
1825 wolfSSL_EVP_sha256(), NULL, pubKey), 1);
1826 ExpectIntEQ(wolfSSL_EVP_PKEY_CTX_set_rsa_padding(keyCtx,
1827 paddings[i]), 1);
1828 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData,
1829 (unsigned int)XSTRLEN(testData)), 1);
1830 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, check, checkSz), 1);
1831 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1832 ExpectIntEQ(ret, 1);
1833 }
1834
1835 wolfSSL_EVP_PKEY_free(pubKey);
1836 wolfSSL_EVP_PKEY_free(privKey);
1837#endif
1838 return EXPECT_RESULT();
1839}
1840
1841/* Test RSA-PSS digital signature creation and verification */
1842int test_wc_RsaPSS_DigitalSignVerify(void)
1843{
1844 EXPECT_DECLS;
1845
1846 /* Early FIPS did not support PSS. */
1847#if (!defined(HAVE_FIPS) || (defined(HAVE_FIPS_VERSION) && \
1848 (HAVE_FIPS_VERSION > 2))) && \
1849 (!defined(HAVE_SELFTEST) || (defined(HAVE_SELFTEST_VERSION) && \
1850 (HAVE_SELFTEST_VERSION > 2))) && \
1851 !defined(NO_RSA) && defined(WC_RSA_PSS) && defined(OPENSSL_EXTRA) && \
1852 defined(WOLFSSL_KEY_GEN) && defined(WC_RSA_NO_PADDING) && \
1853 !defined(NO_SHA256)
1854
1855 /* Test digest */
1856 const unsigned char test_digest[32] = {
1857 0x08, 0x09, 0x00, 0x01, 0x02, 0x03, 0x04, 0x05,
1858 0x06, 0x07, 0x08, 0x09, 0x00, 0x01, 0x02, 0x03,
1859 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x00, 0x01,
1860 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09
1861 };
1862 const unsigned int digest_len = sizeof(test_digest);
1863
1864 /* Variables for RSA key generation and signature operations */
1865 EVP_PKEY_CTX *pkctx = NULL;
1866 EVP_PKEY *pkey = NULL;
1867 EVP_PKEY_CTX *sign_ctx = NULL;
1868 EVP_PKEY_CTX *verify_ctx = NULL;
1869 unsigned char signature[256+MAX_DER_DIGEST_ASN_SZ] = {0};
1870 size_t signature_len = sizeof(signature);
1871 int modulus_bits = 2048;
1872
1873 /* Generate RSA key pair to avoid file dependencies */
1874 ExpectNotNull(pkctx = EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, NULL));
1875 ExpectIntEQ(EVP_PKEY_keygen_init(pkctx), 1);
1876 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_keygen_bits(pkctx, modulus_bits), 1);
1877 ExpectIntEQ(EVP_PKEY_keygen(pkctx, &pkey), 1);
1878
1879 /* Create signing context */
1880 ExpectNotNull(sign_ctx = EVP_PKEY_CTX_new(pkey, NULL));
1881 ExpectIntEQ(EVP_PKEY_sign_init(sign_ctx), 1);
1882
1883 /* Configure RSA-PSS parameters for signing. */
1884 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(sign_ctx, RSA_PKCS1_PSS_PADDING),
1885 1);
1886 /* Default salt length matched hash so use 32 for SHA256 */
1887 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_pss_saltlen(sign_ctx, 32), 1);
1888 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_mgf1_md(sign_ctx, EVP_sha256()), 1);
1889 ExpectIntEQ(EVP_PKEY_CTX_set_signature_md(sign_ctx, EVP_sha256()), 1);
1890
1891 /* Create the digital signature */
1892 ExpectIntEQ(EVP_PKEY_sign(sign_ctx, signature, &signature_len, test_digest,
1893 digest_len), 1);
1894 ExpectIntGT((int)signature_len, 0);
1895
1896 /* Create verification context */
1897 ExpectNotNull(verify_ctx = EVP_PKEY_CTX_new(pkey, NULL));
1898 ExpectIntEQ(EVP_PKEY_verify_init(verify_ctx), 1);
1899
1900 /* Configure RSA-PSS parameters for verification */
1901 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(verify_ctx, RSA_PKCS1_PSS_PADDING),
1902 1);
1903 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_pss_saltlen(verify_ctx, 32), 1);
1904 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_mgf1_md(verify_ctx, EVP_sha256()), 1);
1905 ExpectIntEQ(EVP_PKEY_CTX_set_signature_md(verify_ctx, EVP_sha256()), 1);
1906
1907 /* Verify the digital signature */
1908 ExpectIntEQ(EVP_PKEY_verify(verify_ctx, signature, signature_len,
1909 test_digest, digest_len), 1);
1910
1911 /* Test with wrong digest to ensure verification fails (negative test) */
1912 {
1913 const unsigned char wrong_digest[32] = {
1914 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08,
1915 0x09, 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06,
1916 0x07, 0x08, 0x09, 0x00, 0x01, 0x02, 0x03, 0x04,
1917 0x05, 0x06, 0x07, 0x08, 0x09, 0x00, 0x01, 0x02
1918 };
1919 ExpectIntNE(EVP_PKEY_verify(verify_ctx, signature, signature_len,
1920 wrong_digest, digest_len), 1);
1921 }
1922
1923 /* Clean up */
1924 if (verify_ctx)
1925 EVP_PKEY_CTX_free(verify_ctx);
1926 if (sign_ctx)
1927 EVP_PKEY_CTX_free(sign_ctx);
1928 if (pkey)
1929 EVP_PKEY_free(pkey);
1930 if (pkctx)
1931 EVP_PKEY_CTX_free(pkctx);
1932
1933#endif
1934
1935 return EXPECT_RESULT();
1936}
1937
1938int test_wolfSSL_EVP_MD_ecc_signing(void)
1939{
1940 EXPECT_DECLS;
1941#if defined(OPENSSL_EXTRA) && defined(HAVE_ECC) && defined(USE_CERT_BUFFERS_256)
1942 WOLFSSL_EVP_PKEY* privKey = NULL;
1943 WOLFSSL_EVP_PKEY* pubKey = NULL;
1944 const char testData[] = "Hi There";
1945 WOLFSSL_EVP_MD_CTX mdCtx;
1946 int ret;
1947 const unsigned char* cp;
1948 const unsigned char* p;
1949 unsigned char check[2048/8];
1950 size_t checkSz = sizeof(check);
1951
1952 XMEMSET(check, 0, sizeof(check));
1953
1954 cp = ecc_clikey_der_256;
1955 ExpectNotNull(privKey = wolfSSL_d2i_PrivateKey(EVP_PKEY_EC, NULL, &cp,
1956 sizeof_ecc_clikey_der_256));
1957 p = ecc_clikeypub_der_256;
1958 ExpectNotNull((pubKey = wolfSSL_d2i_PUBKEY(NULL, &p,
1959 sizeof_ecc_clikeypub_der_256)));
1960
1961 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1962 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1963 NULL, privKey), 1);
1964 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData,
1965 (unsigned int)XSTRLEN(testData)), 1);
1966 checkSz = sizeof(check);
1967 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
1968 checkSz = sizeof(check);
1969 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1970 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1971 ExpectIntEQ(ret, 1);
1972
1973 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1974 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1975 NULL, pubKey), 1);
1976 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData,
1977 (unsigned int)XSTRLEN(testData)),
1978 1);
1979 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, check, checkSz), 1);
1980 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1981 ExpectIntEQ(ret, 1);
1982
1983 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1984 ExpectIntEQ(wolfSSL_EVP_DigestSignInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
1985 NULL, privKey), 1);
1986 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData, 4), 1);
1987 checkSz = sizeof(check);
1988 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, NULL, &checkSz), 1);
1989 checkSz = sizeof(check);
1990 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1991 ExpectIntEQ(wolfSSL_EVP_DigestSignUpdate(&mdCtx, testData + 4,
1992 (unsigned int)XSTRLEN(testData) - 4), 1);
1993 checkSz = sizeof(check);
1994 ExpectIntEQ(wolfSSL_EVP_DigestSignFinal(&mdCtx, check, &checkSz), 1);
1995 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
1996 ExpectIntEQ(ret, 1);
1997
1998 wolfSSL_EVP_MD_CTX_init(&mdCtx);
1999 ExpectIntEQ(wolfSSL_EVP_DigestVerifyInit(&mdCtx, NULL, wolfSSL_EVP_sha256(),
2000 NULL, pubKey), 1);
2001 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData, 4), 1);
2002 ExpectIntEQ(wolfSSL_EVP_DigestVerifyUpdate(&mdCtx, testData + 4,
2003 (unsigned int)XSTRLEN(testData) - 4),
2004 1);
2005 ExpectIntEQ(wolfSSL_EVP_DigestVerifyFinal(&mdCtx, check, checkSz), 1);
2006 ret = wolfSSL_EVP_MD_CTX_cleanup(&mdCtx);
2007 ExpectIntEQ(ret, 1);
2008
2009 wolfSSL_EVP_PKEY_free(pubKey);
2010 wolfSSL_EVP_PKEY_free(privKey);
2011#endif
2012 return EXPECT_RESULT();
2013}
2014
2015
2016int test_wolfSSL_EVP_PKEY_encrypt(void)
2017{
2018 EXPECT_DECLS;
2019#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN)
2020 WOLFSSL_RSA* rsa = NULL;
2021 WOLFSSL_EVP_PKEY* pkey = NULL;
2022 WOLFSSL_EVP_PKEY_CTX* ctx = NULL;
2023 const char* in = "What is easy to do is easy not to do.";
2024 size_t inlen = XSTRLEN(in);
2025 size_t outEncLen = 0;
2026 byte* outEnc = NULL;
2027 byte* outDec = NULL;
2028 size_t outDecLen = 0;
2029 size_t rsaKeySz = 2048/8; /* Bytes */
2030#if !defined(HAVE_FIPS) && defined(WC_RSA_NO_PADDING)
2031 byte* inTmp = NULL;
2032 byte* outEncTmp = NULL;
2033 byte* outDecTmp = NULL;
2034#endif
2035
2036 ExpectNotNull(outEnc = (byte*)XMALLOC(rsaKeySz, HEAP_HINT,
2037 DYNAMIC_TYPE_TMP_BUFFER));
2038 if (outEnc != NULL) {
2039 XMEMSET(outEnc, 0, rsaKeySz);
2040 }
2041 ExpectNotNull(outDec = (byte*)XMALLOC(rsaKeySz, HEAP_HINT,
2042 DYNAMIC_TYPE_TMP_BUFFER));
2043 if (outDec != NULL) {
2044 XMEMSET(outDec, 0, rsaKeySz);
2045 }
2046
2047 ExpectNotNull(rsa = RSA_generate_key(2048, 3, NULL, NULL));
2048 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new());
2049 ExpectIntEQ(EVP_PKEY_assign_RSA(pkey, rsa), WOLFSSL_SUCCESS);
2050 if (EXPECT_FAIL()) {
2051 RSA_free(rsa);
2052 }
2053 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
2054 ExpectIntEQ(EVP_PKEY_encrypt_init(ctx), WOLFSSL_SUCCESS);
2055 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx, RSA_PKCS1_PADDING),
2056 WOLFSSL_SUCCESS);
2057
2058 /* Test pkey references count is decremented. pkey shouldn't be destroyed
2059 since ctx uses it.*/
2060 ExpectIntEQ(pkey->ref.count, 2);
2061 EVP_PKEY_free(pkey);
2062 ExpectIntEQ(pkey->ref.count, 1);
2063
2064 /* Encrypt data */
2065 /* Check that we can get the required output buffer length by passing in a
2066 * NULL output buffer. */
2067 ExpectIntEQ(EVP_PKEY_encrypt(ctx, NULL, &outEncLen,
2068 (const unsigned char*)in, inlen), WOLFSSL_SUCCESS);
2069 ExpectIntEQ(rsaKeySz, outEncLen);
2070 /* Now do the actual encryption. */
2071 ExpectIntEQ(EVP_PKEY_encrypt(ctx, outEnc, &outEncLen,
2072 (const unsigned char*)in, inlen), WOLFSSL_SUCCESS);
2073
2074 /* Decrypt data */
2075 ExpectIntEQ(EVP_PKEY_decrypt_init(ctx), WOLFSSL_SUCCESS);
2076 /* Check that we can get the required output buffer length by passing in a
2077 * NULL output buffer. */
2078 ExpectIntEQ(EVP_PKEY_decrypt(ctx, NULL, &outDecLen, outEnc, outEncLen),
2079 WOLFSSL_SUCCESS);
2080 ExpectIntEQ(rsaKeySz, outDecLen);
2081 /* Now do the actual decryption. */
2082 ExpectIntEQ(EVP_PKEY_decrypt(ctx, outDec, &outDecLen, outEnc, outEncLen),
2083 WOLFSSL_SUCCESS);
2084
2085 ExpectIntEQ(XMEMCMP(in, outDec, outDecLen), 0);
2086
2087#if !defined(HAVE_FIPS) && defined(WC_RSA_NO_PADDING)
2088 /* The input length must be the same size as the RSA key.*/
2089 ExpectNotNull(inTmp = (byte*)XMALLOC(rsaKeySz, HEAP_HINT,
2090 DYNAMIC_TYPE_TMP_BUFFER));
2091 if (inTmp != NULL) {
2092 XMEMSET(inTmp, 9, rsaKeySz);
2093 }
2094 ExpectNotNull(outEncTmp = (byte*)XMALLOC(rsaKeySz, HEAP_HINT,
2095 DYNAMIC_TYPE_TMP_BUFFER));
2096 if (outEncTmp != NULL) {
2097 XMEMSET(outEncTmp, 0, rsaKeySz);
2098 }
2099 ExpectNotNull(outDecTmp = (byte*)XMALLOC(rsaKeySz, HEAP_HINT,
2100 DYNAMIC_TYPE_TMP_BUFFER));
2101 if (outDecTmp != NULL) {
2102 XMEMSET(outDecTmp, 0, rsaKeySz);
2103 }
2104 ExpectIntEQ(EVP_PKEY_encrypt_init(ctx), WOLFSSL_SUCCESS);
2105 ExpectIntEQ(EVP_PKEY_CTX_set_rsa_padding(ctx, RSA_NO_PADDING),
2106 WOLFSSL_SUCCESS);
2107 ExpectIntEQ(EVP_PKEY_encrypt(ctx, outEncTmp, &outEncLen, inTmp, rsaKeySz),
2108 WOLFSSL_SUCCESS);
2109 ExpectIntEQ(EVP_PKEY_decrypt_init(ctx), WOLFSSL_SUCCESS);
2110 ExpectIntEQ(EVP_PKEY_decrypt(ctx, outDecTmp, &outDecLen, outEncTmp,
2111 outEncLen), WOLFSSL_SUCCESS);
2112 ExpectIntEQ(XMEMCMP(inTmp, outDecTmp, outDecLen), 0);
2113#endif
2114 EVP_PKEY_CTX_free(ctx);
2115 XFREE(outEnc, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
2116 XFREE(outDec, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
2117#if !defined(HAVE_FIPS) && defined(WC_RSA_NO_PADDING)
2118 XFREE(inTmp, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
2119 XFREE(outEncTmp, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
2120 XFREE(outDecTmp, HEAP_HINT, DYNAMIC_TYPE_TMP_BUFFER);
2121#endif
2122#endif
2123 return EXPECT_RESULT();
2124}
2125
2126int test_wolfSSL_EVP_PKEY_derive(void)
2127{
2128 EXPECT_DECLS;
2129#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT) || defined(WOLFSSL_OPENSSH)
2130#if (!defined(NO_DH) && defined(WOLFSSL_DH_EXTRA)) || defined(HAVE_ECC)
2131 EVP_PKEY_CTX *ctx = NULL;
2132 unsigned char *skey = NULL;
2133 size_t skeylen;
2134 EVP_PKEY *pkey = NULL;
2135 EVP_PKEY *peerkey = NULL;
2136 const unsigned char* key;
2137
2138#if !defined(NO_DH) && defined(WOLFSSL_DH_EXTRA)
2139 /* DH */
2140 key = dh_key_der_2048;
2141 ExpectNotNull((pkey = d2i_PrivateKey(EVP_PKEY_DH, NULL, &key,
2142 sizeof_dh_key_der_2048)));
2143 ExpectIntEQ(DH_generate_key(EVP_PKEY_get0_DH(pkey)), 1);
2144 key = dh_key_der_2048;
2145 ExpectNotNull((peerkey = d2i_PrivateKey(EVP_PKEY_DH, NULL, &key,
2146 sizeof_dh_key_der_2048)));
2147 ExpectIntEQ(DH_generate_key(EVP_PKEY_get0_DH(peerkey)), 1);
2148 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
2149 ExpectIntEQ(EVP_PKEY_derive_init(ctx), 1);
2150 ExpectIntEQ(EVP_PKEY_derive_set_peer(ctx, peerkey), 1);
2151 ExpectIntEQ(EVP_PKEY_derive(ctx, NULL, &skeylen), 1);
2152 ExpectNotNull(skey = (unsigned char*)XMALLOC(skeylen, NULL,
2153 DYNAMIC_TYPE_OPENSSL));
2154 ExpectIntEQ(EVP_PKEY_derive(ctx, skey, &skeylen), 1);
2155
2156 EVP_PKEY_CTX_free(ctx);
2157 ctx = NULL;
2158 EVP_PKEY_free(peerkey);
2159 peerkey = NULL;
2160 EVP_PKEY_free(pkey);
2161 pkey = NULL;
2162 XFREE(skey, NULL, DYNAMIC_TYPE_OPENSSL);
2163 skey = NULL;
2164#endif
2165
2166#ifdef HAVE_ECC
2167 /* ECDH */
2168 key = ecc_clikey_der_256;
2169 ExpectNotNull((pkey = d2i_PrivateKey(EVP_PKEY_EC, NULL, &key,
2170 sizeof_ecc_clikey_der_256)));
2171 key = ecc_clikeypub_der_256;
2172 ExpectNotNull((peerkey = d2i_PUBKEY(NULL, &key,
2173 sizeof_ecc_clikeypub_der_256)));
2174 ExpectNotNull(ctx = EVP_PKEY_CTX_new(pkey, NULL));
2175 ExpectIntEQ(EVP_PKEY_derive_init(ctx), 1);
2176 ExpectIntEQ(EVP_PKEY_derive_set_peer(ctx, peerkey), 1);
2177 ExpectIntEQ(EVP_PKEY_derive(ctx, NULL, &skeylen), 1);
2178 ExpectNotNull(skey = (unsigned char*)XMALLOC(skeylen, NULL,
2179 DYNAMIC_TYPE_OPENSSL));
2180 ExpectIntEQ(EVP_PKEY_derive(ctx, skey, &skeylen), 1);
2181
2182 EVP_PKEY_CTX_free(ctx);
2183 EVP_PKEY_free(peerkey);
2184 EVP_PKEY_free(pkey);
2185 XFREE(skey, NULL, DYNAMIC_TYPE_OPENSSL);
2186#endif /* HAVE_ECC */
2187#endif /* (!NO_DH && WOLFSSL_DH_EXTRA) || HAVE_ECC */
2188#endif /* OPENSSL_ALL || WOLFSSL_QT || WOLFSSL_OPENSSH */
2189 return EXPECT_RESULT();
2190}
2191
2192int test_wolfSSL_EVP_PKEY_print_public(void)
2193{
2194 EXPECT_DECLS;
2195#if defined(OPENSSL_EXTRA) && !defined(NO_BIO)
2196 WOLFSSL_BIO* rbio = NULL;
2197 WOLFSSL_BIO* wbio = NULL;
2198 WOLFSSL_EVP_PKEY* pkey = NULL;
2199 char line[256] = { 0 };
2200 char line1[256] = { 0 };
2201 int i = 0;
2202
2203 /* test error cases */
2204 ExpectIntEQ( EVP_PKEY_print_public(NULL,NULL,0,NULL),0L);
2205
2206 /*
2207 * test RSA public key print
2208 * in this test, pass '3' for indent
2209 */
2210#if !defined(NO_RSA) && defined(USE_CERT_BUFFERS_1024)
2211
2212 ExpectNotNull(rbio = BIO_new_mem_buf( client_keypub_der_1024,
2213 sizeof_client_keypub_der_1024));
2214
2215 ExpectNotNull(wolfSSL_d2i_PUBKEY_bio(rbio, &pkey));
2216
2217 ExpectNotNull(wbio = BIO_new(BIO_s_mem()));
2218
2219 ExpectIntEQ(EVP_PKEY_print_public(wbio, pkey,3,NULL),1);
2220
2221 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2222 strcpy(line1, " RSA Public-Key: (1024 bit)\n");
2223 ExpectIntEQ(XSTRNCMP(line, line1, XSTRLEN(line1)), 0);
2224
2225 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2226 strcpy(line1, " Modulus:\n");
2227 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2228
2229 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2230 strcpy(line1, " 00:bc:73:0e:a8:49:f3:74:a2:a9:ef:18:a5:da:55:\n");
2231 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2232
2233 /* skip to the end of modulus element*/
2234 for (i = 0; i < 8 ;i++) {
2235 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2236 }
2237
2238 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2239 strcpy(line1, " Exponent: 65537 (0x010001)\n");
2240 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2241
2242
2243 /* should reach EOF */
2244 ExpectIntLE(BIO_gets(wbio, line, sizeof(line)), 0);
2245
2246 EVP_PKEY_free(pkey);
2247 pkey = NULL;
2248 BIO_free(rbio);
2249 BIO_free(wbio);
2250 rbio = NULL;
2251 wbio = NULL;
2252
2253#endif /* !NO_RSA && USE_CERT_BUFFERS_1024*/
2254
2255 /*
2256 * test DSA public key print
2257 */
2258#if !defined(NO_DSA) && defined(USE_CERT_BUFFERS_2048)
2259 ExpectNotNull(rbio = BIO_new_mem_buf( dsa_pub_key_der_2048,
2260 sizeof_dsa_pub_key_der_2048));
2261
2262 ExpectNotNull(wolfSSL_d2i_PUBKEY_bio(rbio, &pkey));
2263
2264 ExpectNotNull(wbio = BIO_new(BIO_s_mem()));
2265
2266 ExpectIntEQ(EVP_PKEY_print_public(wbio, pkey,0,NULL),1);
2267
2268 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2269 strcpy(line1, "DSA Public-Key: (2048 bit)\n");
2270 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2271
2272 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2273 strcpy(line1, "pub:\n");
2274 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2275
2276 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2277 strcpy(line1,
2278 " 00:C2:35:2D:EC:83:83:6C:73:13:9E:52:7C:74:C8:\n");
2279 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2280
2281 /* skip to the end of pub element*/
2282 for (i = 0; i < 17 ;i++) {
2283 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2284 }
2285
2286 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2287 strcpy(line1, "P:\n");
2288 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2289
2290 /* skip to the end of P element*/
2291 for (i = 0; i < 18 ;i++) {
2292 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2293 }
2294
2295 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2296 strcpy(line1, "Q:\n");
2297 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2298
2299 /* skip to the end of Q element*/
2300 for (i = 0; i < 3 ;i++) {
2301 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2302 }
2303 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2304 strcpy(line1, "G:\n");
2305 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2306
2307 /* skip to the end of G element*/
2308 for (i = 0; i < 18 ;i++) {
2309 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2310 }
2311 /* should reach EOF */
2312 ExpectIntLE(BIO_gets(wbio, line, sizeof(line)), 0);
2313
2314 EVP_PKEY_free(pkey);
2315 pkey = NULL;
2316 BIO_free(rbio);
2317 BIO_free(wbio);
2318 rbio = NULL;
2319 wbio = NULL;
2320
2321#endif /* !NO_DSA && USE_CERT_BUFFERS_2048 */
2322
2323 /*
2324 * test ECC public key print
2325 */
2326#if defined(HAVE_ECC) && defined(USE_CERT_BUFFERS_256)
2327
2328 ExpectNotNull(rbio = BIO_new_mem_buf( ecc_clikeypub_der_256,
2329 sizeof_ecc_clikeypub_der_256));
2330
2331 ExpectNotNull(wolfSSL_d2i_PUBKEY_bio(rbio, &pkey));
2332
2333 ExpectNotNull(wbio = BIO_new(BIO_s_mem()));
2334
2335 ExpectIntEQ(EVP_PKEY_print_public(wbio, pkey,0,NULL),1);
2336
2337 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2338 ExpectStrEQ(line, "Public-Key: (256 bit)\n");
2339
2340 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2341 strcpy(line1, "pub:\n");
2342 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2343
2344 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2345 strcpy(line1,
2346 " 04:55:BF:F4:0F:44:50:9A:3D:CE:9B:B7:F0:C5:4D:\n");
2347 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2348
2349 /* skip to the end of pub element*/
2350 for (i = 0; i < 4 ;i++) {
2351 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2352 }
2353
2354 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2355 strcpy(line1, "ASN1 OID: prime256v1\n");
2356 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2357
2358 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2359 strcpy(line1, "NIST CURVE: P-256\n");
2360 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2361
2362
2363 /* should reach EOF */
2364 ExpectIntLE(BIO_gets(wbio, line, sizeof(line)), 0);
2365
2366 EVP_PKEY_free(pkey);
2367 pkey = NULL;
2368 BIO_free(rbio);
2369 BIO_free(wbio);
2370 rbio = NULL;
2371 wbio = NULL;
2372
2373#endif /* HAVE_ECC && USE_CERT_BUFFERS_256 */
2374
2375 /*
2376 * test DH public key print
2377 */
2378#if defined(WOLFSSL_DH_EXTRA) && defined(USE_CERT_BUFFERS_2048)
2379
2380 ExpectNotNull(rbio = BIO_new_mem_buf( dh_pub_key_der_2048,
2381 sizeof_dh_pub_key_der_2048));
2382
2383 ExpectNotNull(wolfSSL_d2i_PUBKEY_bio(rbio, &pkey));
2384
2385 ExpectNotNull(wbio = BIO_new(BIO_s_mem()));
2386
2387 ExpectIntEQ(EVP_PKEY_print_public(wbio, pkey,0,NULL), 1);
2388
2389 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2390 strcpy(line1, "DH Public-Key: (2048 bit)\n");
2391 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2392
2393 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2394 strcpy(line1, "public-key:\n");
2395 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2396
2397 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2398 strcpy(line1,
2399 " 34:41:BF:E9:F2:11:BF:05:DB:B2:72:A8:29:CC:BD:\n");
2400 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2401
2402 /* skip to the end of public-key element*/
2403 for (i = 0; i < 17 ;i++) {
2404 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2405 }
2406
2407 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2408 strcpy(line1, "prime:\n");
2409 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2410
2411 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2412 strcpy(line1,
2413 " 00:D3:B2:99:84:5C:0A:4C:E7:37:CC:FC:18:37:01:\n");
2414 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2415
2416 /* skip to the end of prime element*/
2417 for (i = 0; i < 17 ;i++) {
2418 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2419 }
2420
2421 ExpectIntGT(BIO_gets(wbio, line, sizeof(line)), 0);
2422 strcpy(line1, "generator: 2 (0x02)\n");
2423 ExpectIntEQ(XSTRNCMP( line, line1, XSTRLEN(line1)), 0);
2424
2425 /* should reach EOF */
2426 ExpectIntLE(BIO_gets(wbio, line, sizeof(line)), 0);
2427
2428 EVP_PKEY_free(pkey);
2429 pkey = NULL;
2430 BIO_free(rbio);
2431 BIO_free(wbio);
2432 rbio = NULL;
2433 wbio = NULL;
2434
2435#endif /* WOLFSSL_DH_EXTRA && USE_CERT_BUFFERS_2048 */
2436
2437 /* to prevent "unused variable" warning */
2438 (void)pkey;
2439 (void)wbio;
2440 (void)rbio;
2441 (void)line;
2442 (void)line1;
2443 (void)i;
2444#endif /* OPENSSL_EXTRA */
2445 return EXPECT_RESULT();
2446}
2447
2448int test_wolfSSL_EVP_PKEY_ed25519(void)
2449{
2450 EXPECT_DECLS;
2451#if defined(OPENSSL_EXTRA) && defined(HAVE_ED25519)
2452 WOLFSSL_EVP_PKEY* pkey = NULL;
2453 const unsigned char* p;
2454
2455 /* Known-valid Ed25519 public key matching server_ed25519_key. The bytes
2456 * are the raw 32-byte BIT STRING contents from
2457 * ./certs/ed25519/server-ed25519-key.der so the import succeeds even
2458 * under strict point-validation. */
2459 static const unsigned char rawPub[32] = {
2460 0x23, 0xaa, 0x4d, 0x60, 0x50, 0xe0, 0x13, 0xd3,
2461 0x3a, 0xed, 0xab, 0xf6, 0xa9, 0xcc, 0x4a, 0xfe,
2462 0xd7, 0x4d, 0x2f, 0xd2, 0x5b, 0x1a, 0x10, 0x05,
2463 0xef, 0x5a, 0x41, 0x25, 0xce, 0x1b, 0x53, 0x78
2464 };
2465
2466 /* SPKI wrapper around the same known-valid public key (the full
2467 * contents of ./certs/ed25519/server-ed25519-key.der). */
2468 static const unsigned char spkiPub[] = {
2469 0x30, 0x2a, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65, 0x70, 0x03, 0x21, 0x00,
2470 0x23, 0xaa, 0x4d, 0x60, 0x50, 0xe0, 0x13, 0xd3,
2471 0x3a, 0xed, 0xab, 0xf6, 0xa9, 0xcc, 0x4a, 0xfe,
2472 0xd7, 0x4d, 0x2f, 0xd2, 0x5b, 0x1a, 0x10, 0x05,
2473 0xef, 0x5a, 0x41, 0x25, 0xce, 0x1b, 0x53, 0x78
2474 };
2475
2476 /* Exercise the WC_EVP_PKEY_ED25519 case in d2i_evp_pkey()
2477 * including the algId match for the PKCS#8 wrapper. */
2478 p = server_ed25519_key;
2479 ExpectNotNull(pkey = wolfSSL_d2i_PrivateKey(EVP_PKEY_ED25519, NULL,
2480 &p, (long)sizeof_server_ed25519_key));
2481 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED25519);
2482 wolfSSL_EVP_PKEY_free(pkey);
2483 pkey = NULL;
2484
2485 p = spkiPub;
2486 ExpectNotNull(pkey = wolfSSL_d2i_PUBKEY(NULL, &p, (long)sizeof(spkiPub)));
2487 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED25519);
2488 wolfSSL_EVP_PKEY_free(pkey);
2489 pkey = NULL;
2490
2491 /* Exercise EVP_PKEY_new_raw_public_key to parse 32 raw BIT STRING bytes */
2492 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new_raw_public_key(
2493 WC_EVP_PKEY_ED25519, NULL, rawPub, sizeof(rawPub)));
2494 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED25519);
2495 wolfSSL_EVP_PKEY_free(pkey);
2496 pkey = NULL;
2497
2498 {
2499 static const unsigned char junk[16] = { 0 };
2500 const unsigned char* jp = junk;
2501 ExpectNull(wolfSSL_d2i_PUBKEY(NULL, &jp, (long)sizeof(junk)));
2502 }
2503#endif
2504 return EXPECT_RESULT();
2505}
2506
2507int test_wolfSSL_CTX_use_PrivateKey_ed25519(void)
2508{
2509 EXPECT_DECLS;
2510#if defined(OPENSSL_EXTRA) && defined(HAVE_ED25519) && \
2511 !defined(NO_WOLFSSL_SERVER) && !defined(NO_TLS)
2512 WOLFSSL_CTX* ctx = NULL;
2513 WOLFSSL_EVP_PKEY* pkey = NULL;
2514 const unsigned char* p;
2515
2516 ExpectNotNull(ctx = wolfSSL_CTX_new(wolfSSLv23_server_method()));
2517
2518 /* Load the matching Ed25519 server cert */
2519 ExpectIntEQ(wolfSSL_CTX_use_certificate_buffer(ctx, server_ed25519_cert,
2520 (long)sizeof_server_ed25519_cert, WOLFSSL_FILETYPE_ASN1),
2521 WOLFSSL_SUCCESS);
2522
2523 /* Decode the Ed25519 private key as a WOLFSSL_EVP_PKEY */
2524 p = server_ed25519_key;
2525 ExpectNotNull(pkey = wolfSSL_d2i_PrivateKey(EVP_PKEY_ED25519, NULL,
2526 &p, (long)sizeof_server_ed25519_key));
2527 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED25519);
2528
2529 /* Load the pkey and check for success */
2530 ExpectIntEQ(wolfSSL_CTX_use_PrivateKey(ctx, pkey), WOLFSSL_SUCCESS);
2531
2532 wolfSSL_EVP_PKEY_free(pkey);
2533 wolfSSL_CTX_free(ctx);
2534#endif
2535 return EXPECT_RESULT();
2536}
2537
2538int test_wolfSSL_EVP_PKEY_ed448(void)
2539{
2540 EXPECT_DECLS;
2541#if defined(OPENSSL_EXTRA) && defined(HAVE_ED448)
2542 WOLFSSL_EVP_PKEY* pkey = NULL;
2543 const unsigned char* p;
2544
2545 /* Known-valid Ed448 public key: the raw 57-byte BIT STRING contents
2546 * from ./certs/ed448/server-ed448-key.der so the import succeeds even
2547 * under strict point-validation. */
2548 static const unsigned char rawPub[57] = {
2549 0x54, 0x81, 0x39, 0x01, 0xeb, 0x37, 0xd9, 0xa9,
2550 0x07, 0xcd, 0x01, 0xbc, 0x9d, 0x70, 0x16, 0xc2,
2551 0x2c, 0x2b, 0x75, 0x5b, 0x63, 0xdb, 0xee, 0x3a,
2552 0x2d, 0x44, 0x92, 0x46, 0xb4, 0x7b, 0x07, 0x03,
2553 0x4f, 0xa2, 0xae, 0x86, 0x86, 0xdc, 0x8b, 0x4b,
2554 0x2c, 0x7f, 0xe8, 0x6b, 0x14, 0x8d, 0x58, 0xdd,
2555 0x6d, 0xe7, 0x6f, 0x3a, 0x05, 0x95, 0xa8, 0xef,
2556 0x00
2557 };
2558
2559 /* SPKI wrapper around the same known-valid public key (the full
2560 * contents of ./certs/ed448/server-ed448-key.der). */
2561 static const unsigned char spkiPub[] = {
2562 0x30, 0x43, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65, 0x71, 0x03, 0x3a, 0x00,
2563 0x54, 0x81, 0x39, 0x01, 0xeb, 0x37, 0xd9, 0xa9,
2564 0x07, 0xcd, 0x01, 0xbc, 0x9d, 0x70, 0x16, 0xc2,
2565 0x2c, 0x2b, 0x75, 0x5b, 0x63, 0xdb, 0xee, 0x3a,
2566 0x2d, 0x44, 0x92, 0x46, 0xb4, 0x7b, 0x07, 0x03,
2567 0x4f, 0xa2, 0xae, 0x86, 0x86, 0xdc, 0x8b, 0x4b,
2568 0x2c, 0x7f, 0xe8, 0x6b, 0x14, 0x8d, 0x58, 0xdd,
2569 0x6d, 0xe7, 0x6f, 0x3a, 0x05, 0x95, 0xa8, 0xef,
2570 0x00
2571 };
2572
2573 /* SPKI path. */
2574 p = spkiPub;
2575 ExpectNotNull(pkey = wolfSSL_d2i_PUBKEY(NULL, &p, (long)sizeof(spkiPub)));
2576 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED448);
2577 wolfSSL_EVP_PKEY_free(pkey);
2578 pkey = NULL;
2579
2580 /* Parse raw bytes */
2581 ExpectNotNull(pkey = wolfSSL_EVP_PKEY_new_raw_public_key(
2582 WC_EVP_PKEY_ED448, NULL, rawPub, sizeof(rawPub)));
2583 ExpectIntEQ(wolfSSL_EVP_PKEY_id(pkey), EVP_PKEY_ED448);
2584 wolfSSL_EVP_PKEY_free(pkey);
2585 pkey = NULL;
2586#endif
2587 return EXPECT_RESULT();
2588}
2589